Information Disclosure Via Privilege Escalation
Moodle is vulnerable to information disclosure through privilege escalation attacks. Sensitive information from hidden fields is accessible to authenticated users when a user with the Teacher role navigates to the Enrolled users page in user settings...