EPSS
Percentile
50.2%
Moodle is vulnerable to information disclosure. This is because global search does not respect the Force login for profiles setting and displays user names to unauthenticated users.
Force login for profiles
www.securityfocus.com/bid/96978
git.moodle.org/gw?p=moodle.git;a=commit;h=58d85af20927a81f10a9b98a30be296b26fd68dc
moodle.org/mod/forum/discuss.php?d=349420