3 matches found
Moodle allows remote attackers to obtain sensitive information
Moodle 1.9.x before 1.9.11 and 2.0.x before 2.0.2 places an IMS enterprise enrolment file in the course-files area, which allows remote attackers to obtain sensitive information via a request for imsenterprise-enrol.xml...
CVE-2011-4283
The CVE refers to Moodle prior to 1.9.11 and 2.0.x prior to 2.0.2, where an IMS enterprise enrolment file is placed in the course-files area, allowing remote attackers to retrieve imsenterprise-enrol.xml and obtain sensitive information. Concretely, affected software: Moodle 1.9.x up to 1.9.11 an...
DSA-2262-1 moodle - several
Bulletin has no description...