2 matches found
CVE-2023-28336
Insufficient filtering of grade report history made it possible for teachers to access the names of users they could not otherwise access...
CVE-2023-28336
CVE-2023-28336 affects Moodle; root cause is insufficient filtering of grade report history, allowing teachers to view names of users they should not access. Affected versions per published details include Moodle 3.11 to 3.11.14, 4.0 to 4.0.8, 4.1 to 4.1.3, and 4.2. Remediation: upgrade to fixed ...