login/forgot_password.php in Moodle prior to 1.6.2 allows remote malicious users to obtain sensitive information (e-mail addresses and Moodle account names) via a find action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle 1.6.0 |
||
moodle moodle |