๐Ÿ” CVE Alert

CVE-2023-28334

MEDIUM 4.3

Moodle: users' name enumeration possible via idor on learning plans page

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

Authenticated users were able to enumerate other users' names via the learning plans page.

CWE CWE-200
Published Mar 23, 2023
Last Updated Aug 2, 2024
Stay Ahead of the Next One

Get instant alerts for

Be the first to know when new medium vulnerabilities are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2179423 moodle.org: https://moodle.org/mod/forum/discuss.php?d=445066