Description
The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover the name of any user via a beep operation.
Remediation
References
Related Vulnerabilities
Moodle Improper Authentication Vulnerability (CVE-2021-40693)
GlassFish CVE-2016-5477 Vulnerability (CVE-2016-5477)
WebLogic Improper Certificate Validation Vulnerability (CVE-2021-3450)
Java Unspesificed Vulnerability (CVE-2018-2941)
PHP Improper Certificate Validation Vulnerability (CVE-2015-3152)