Lucene search
PRIOn knowledge basePRION:CVE-2014-0124HistoryMar 24, 2014 - 2:20 p.m.
Code injection
2014-03-2414:20:00
PRIOn knowledge base
www.prio-n.com
6
The identity-reporting implementations in mod/forum/renderer.php and mod/quiz/override_form.php in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 do not properly restrict the display of e-mail addresses, which allows remote authenticated users to obtain sensitive information by using the (1) Forum or (2) Quiz module.
Related
cvelist
cvelist
CVE-2014-0124
2014-03-22 01:00:00
osv
osv
Moodle allows attackers to obtain sensitive information
2022-05-13 01:12:50
cve
cve
CVE-2014-0124
2014-03-24 14:20:39
nvd
nvd
CVE-2014-0124
2014-03-24 14:20:39
github
github
Moodle allows attackers to obtain sensitive information
2022-05-13 01:12:50
veracode
veracode
Information Disclosure
2017-07-30 21:48:23
ubuntucve
ubuntucve
CVE-2014-0124
2014-03-24 00:00:00
nessus
nessus
Fedora 20 : moodle-2.5.5-1.fc20 (2014-4163)
2014-03-31 00:00:00
Fedora 19 : moodle-2.4.9-1.fc19 (2014-4152)
2014-03-31 00:00:00
Moodle 2.4.x < 2.4.9 Multiple Vulnerabilities
2016-07-21 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
Mageia: Security Advisory (MGASA-2014-0160)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.5-1.fc20
2014-03-30 06:16:54
[SECURITY] Fedora 19 Update: moodle-2.4.9-1.fc19
2014-03-30 06:10:35
[SECURITY] Fedora 20 Update: moodle-2.5.6-1.fc20
2014-05-29 23:27:45
mageia
mageia
Updated moodle packages fix multiple security vulnerabilities
2014-04-03 21:23:49