Moodle is vulnerable to information disclosure. When remote authenticated users search the posts, it is possible for them to view the names and other details of the arbitrary user accounts.
CPE | Name | Operator | Version |
---|---|---|---|
moodle/moodle | le | 1.9.15 | |
moodle/moodle | le | 1.9.15 |
git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=36b0ddeed45d0751508dcd9fa50f17fda43bae54
git.moodle.org/gw?p=moodle.git;a=commit;h=36b0ddeed45d0751508dcd9fa50f17fda43bae54
moodle.org/mod/forum/discuss.php?d=194009
www.debian.org/security/2012/dsa-2421
bugzilla.redhat.com/show_bug.cgi?id=783532
git.moodle.org/gw?p=moodle.git;a=commit;h=36b0ddeed45d0751508dcd9fa50f17fda43bae54
security-tracker.debian.org/tracker/CVE-2012-0792