Description

Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 does not properly handle user/action_redir group messages, which allows remote authenticated users to discover e-mail addresses by visiting the messaging interface.

Remediation

References

CVE-2011-4593

Related Vulnerabilities

SharePoint CVE-2023-24950 Vulnerability (CVE-2023-24950)

WordPress Plugin Link Log-external link click monitor SQL Injection (2.0)

WordPress Plugin Media Tags Cross-Site Scripting (3.2.0.2)

Apache HTTP Server CVE-2005-2700 Vulnerability (CVE-2005-2700)

WordPress Plugin Image Slider-Responsive Slider Unspecified Vulnerability (2.4.2)

Severity

Medium

Classification

CVE-2011-4593 CWE-200

Tags

Missing Update Known Vulnerabilities