NVD

Id
44165  
Name
CVE-2012-2353  
Description
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled users" under the Users Settings section.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2012-07-20  
Modified Date
2012-08-09  
Seq
2012-2353  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
221835 44165 CVE-2012-2353 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-31923  View
221836 44165 CVE-2012-2353 [oss-security] 20120523 Moodle security notifications public  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27542 JVNDB-2012-003249 Moodle における非表示フィールドから重要なユーザ情報を取得される脆弱性 Moodle には、非表示フィールドから重要なユーザ情報を取得される脆弱性が存在します。 CVE-2012-2353 55591 CVE-2012-2353 44165 4 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003249.html 2012-07-21 2012-07-24 View