Lucene search
Veracode Vulnerability DatabaseVERACODE:4645HistoryJul 24, 2017 - 7:37 a.m.
Grade Information Leakage
2017-07-2407:37:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.002
Percentile
52.7%
Moodle is vulnerable to grade information leakage. The leakage exists because lib/classes/grades_external.php does not enforce moodle/grade:viewhidden capability, allowing the students to view hidden grades through get_grade services.
Related
nvd
nvd
CVE-2014-7831
2014-11-24 11:59:01
prion
prion
Code injection
2014-11-24 11:59:00
cvelist
cvelist
CVE-2014-7831
2014-11-24 11:00:00
github
github
Moodle exposes hidden grades to students
2022-05-13 01:12:41
cve
cve
CVE-2014-7831
2014-11-24 11:59:01
nessus
nessus
Moodle 2.7.x < 2.7.3 Information Disclosure
2015-04-20 00:00:00
ubuntucve
ubuntucve
CVE-2014-7831
2014-11-24 00:00:00
osv
osv
Moodle exposes hidden grades to students
2022-05-13 01:12:41