28 matches found
CVE-2025-62400 Moodle: hidden group names visible to event creators
Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information...
CVE-2025-62400 Moodle: hidden group names visible to event creators
Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information...
CVE-2025-62400
Moodle (CMS) is affected by CVE-2025-62400: hidden-group names can be exposed to users who can create calendar events but cannot view hidden groups, risking disclosure of private/restricted group information. Connected advisories indicate Fedora NSS/Nessus entries reference this CVE and note vuln...
CVE-2025-62400 Moodle: hidden group names visible to event creators
Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information...
PT-2025-43448
Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw exists in Moodle that allows users with permission to create calendar events to view the names of hidden groups, even if they do not have permission to view those groups. This can lead ...
Moodle 安全漏洞
Moodle is a free e-learning software platform open-sourced by Moodle, also known as a course management system, learning management system, or virtual learning environment. A security vulnerability exists in Moodle that originates from exposing hidden group names to users with the Create Calendar...
CVE-2025-62400
Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information...
CVE-2022-41913 Discourse-calendar exposes members of hidden groups
Discourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic. Members of private groups or public groups with private members can be listed by users, who can create and edit post events. This vulnerability onl...