Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The participants table download in Moodle always included user emails, but should have only done so when users' emails are not hidden. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5 and 3.7 to 3.7.8. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, and 3.10.
CVSS Information
N/A
Vulnerability Type
通过发送数据的信息暴露
Vulnerability Title
Moodle 信息泄露漏洞
Vulnerability Description
Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 存在安全漏洞,该漏洞源于参与者表下载总是包含用户的电子邮件,但是只有当用户的电子邮件没有隐藏时才应该这样做。以下产品及版本受影响:3.9版本至3.9.2版本, 3.8版本至3.8.5版本, 3.7版本至3.7.8版本。
CVSS Information
N/A
Vulnerability Type
N/A