CVE Vulnerabilities

CVE-2011-4289

Published: Jul 16, 2012 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Moodle 2.0.x before 2.0.3 does not recognize the configuration setting that makes e-mail addresses visible only to course members, which allows remote authenticated users to obtain sensitive address information by reading a full profile page.

Affected Software

Name Vendor Start Version End Version
Moodle Moodle 2.0.2 2.0.2
Moodle Moodle 2.0.1 2.0.1
Moodle Moodle 2.0.0 2.0.0

References