Description
Insufficient filtering of grade report history made it possible for teachers to access the names of users they could not otherwise access.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2012-1541 Vulnerability (CVE-2012-1541)
WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Security Bypass (5.3.14)
WordPress Plugin Easy FancyBox Unspecified Vulnerability (1.3.4.9)
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-10133)
FrontAccounting Multiple SQL Injection Vulnerabilities (CVE-2014-3973)