Description

mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated users to discover the names of other users via unspecified vectors.

Remediation

References

CVE-2011-4308

Related Vulnerabilities

Caddy Web Server Improper Authentication Vulnerability (CVE-2018-21246)

IBM WebSEAL Improper Certificate Validation Vulnerability (CVE-2019-4150)

Apache HTTP Server Other Vulnerability (CVE-2007-1863)

WordPress Plugin Kindeditor For WordPress Cross-Site Scripting (1.3.3)

MySQL CVE-2019-2536 Vulnerability (CVE-2019-2536)

Severity

Medium

Classification

CVE-2011-4308 CWE-264

Tags

Missing Update Known Vulnerabilities