Lucene search
Ubuntu.comUB:CVE-2012-2353HistoryJul 21, 2012 - 12:00 a.m.
CVE-2012-2353
2012-07-2100:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
41.4%
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote
authenticated users to obtain sensitive user information from hidden fields
by leveraging the teacher role and navigating to “Enrolled users” under the
Users Settings section.
Notes
| Author | Note |
|---|---|
| jdstrand | moodle 2.1 and higher |
Related
cvelist
cvelist
CVE-2012-2353
2012-07-21 01:00:00
cve
cve
CVE-2012-2353
2012-07-21 03:38:55
prion
prion
Stack overflow
2012-07-21 03:38:00
veracode
veracode
Information Disclosure Via Privilege Escalation
2017-06-01 02:17:58
osv
osv
Moodle Exposes Sensitive User Information
2022-05-13 01:13:06
nvd
nvd
CVE-2012-2353
2012-07-21 03:38:55
github
github
Moodle Exposes Sensitive User Information
2022-05-13 01:13:06
nessus
nessus
Moodle 2.1.x < 2.1.6 / 2.2.x < 2.2.3 Multiple Vulnerabilities
2015-04-20 00:00:00
Fedora 16 : moodle-2.0.10-1.fc16 (2012-11028)
2012-08-02 00:00:00
Fedora 17 : moodle-2.2.4-1.fc17 (2012-11039)
2012-08-02 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2012-11028
2012-08-03 00:00:00
Fedora Update for moodle FEDORA-2012-11039
2012-08-30 00:00:00
Fedora Update for moodle FEDORA-2012-11028
2012-08-03 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: moodle-2.2.4-1.fc17
2012-08-01 22:28:41
[SECURITY] Fedora 16 Update: moodle-2.0.10-1.fc16
2012-08-01 22:27:44
[SECURITY] Fedora 17 Update: moodle-2.2.3-1.fc17
2012-06-01 17:01:55
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
41.4%
Related for UB:CVE-2012-2353