CVE-2011-4289 in Moodleinfo

Summary

Moodle 2.0.x before 2.0.3 does not recognize the configuration setting that makes e-mail addresses visible only to course members, which allows remote authenticated users to obtain sensitive address information by reading a full profile page.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

11/04/2011

Disclosure

07/16/2012

Moderation

VulDB entry created

Entries

VDB-61297 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

4.3

EPSS

0.00199

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4289
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4289
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4289/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!