2 matches found
E-mail Address Disclosure
Moodle is vulnerable to e-mail address disclosure. Moodle grants excessive authorization through the moodle/course:viewhiddenuserfields. Authenticated users can find student e-mail addresses using a teacher role and looking at the participants list...
CVE-2010-4011
CVE-2010-4011 affects Dovecot on Apple Mac OS X 10.6.5 (10H574; server variants noted in Nessus). The root cause is a memory handling issue (described as a memory aliasing issue) in Dovecot’s processing of user names, which allows remote authenticated users to read another person’s private email ...