CVE-2017-15110

State: PUBLISHED · Published: 2017-11-20 · Updated: 2024-08-05 · Assigner: redhat

Description

In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.

CWE

(none)

Affected

n/a / Moodle 3.x — v=Moodle 3.x [affected]

CVSS

(none)

References

http://www.securityfocus.com/bid/101909 vdb-entry, x_refsource_BID
https://moodle.org/mod/forum/discuss.php?d=361784 x_refsource_CONFIRM

Source

cvelistV5-main/cves/2017/15xxx/CVE-2017-15110.json