user/view.php in Moodle up to and including 2.1.10, 2.2.x prior to 2.2.8, 2.3.x prior to 2.3.5, and 2.4.x prior to 2.4.2 does not enforce the forceloginforprofiles setting, which allows remote malicious users to obtain sensitive course-profile information by leveraging the guest role, as demonstrated by a Google search.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject fedora 18 |
||
fedoraproject fedora 17 |
||
moodle moodle 2.2.4 |
||
moodle moodle 2.2.5 |
||
moodle moodle 2.2.3 |
||
moodle moodle 2.2.1 |
||
moodle moodle 2.2.2 |
||
moodle moodle 2.2.7 |
||
moodle moodle 2.2.6 |
||
moodle moodle 2.2.0 |
||
moodle moodle 2.4.1 |
||
moodle moodle 2.4.0 |
||
moodle moodle 2.3.2 |
||
moodle moodle 2.3.4 |
||
moodle moodle 2.3.1 |
||
moodle moodle 2.3.0 |
||
moodle moodle 2.3.3 |
||
moodle moodle 2.1.5 |
||
moodle moodle 2.1.2 |
||
moodle moodle 2.1.9 |
||
moodle moodle 2.0.3 |
||
moodle moodle 2.0.7 |
||
moodle moodle 2.0.5 |
||
moodle moodle 1.4.4 |
||
moodle moodle 1.5 |
||
moodle moodle 1.9.11 |
||
moodle moodle 1.3.2 |
||
moodle moodle 1.9.8 |
||
moodle moodle 1.8.12 |
||
moodle moodle 1.5.2 |
||
moodle moodle 1.6.8 |
||
moodle moodle 1.9.3 |
||
moodle moodle 1.9.6 |
||
moodle moodle 1.8.10 |
||
moodle moodle 1.9.2 |
||
moodle moodle 1.8.3 |
||
moodle moodle 1.9.13 |
||
moodle moodle 2.0.2 |
||
moodle moodle 2.0.9 |
||
moodle moodle 2.0.8 |
||
moodle moodle 2.0.1 |
||
moodle moodle 1.6.3 |
||
moodle moodle 1.1.1 |
||
moodle moodle 1.6.5 |
||
moodle moodle 1.2.1 |
||
moodle moodle 1.6.4 |
||
moodle moodle 1.9.10 |
||
moodle moodle 1.9.9 |
||
moodle moodle 1.8.13 |
||
moodle moodle 1.9.17 |
||
moodle moodle 1.7.6 |
||
moodle moodle 1.6.7 |
||
moodle moodle 1.7.4 |
||
moodle moodle 1.7.5 |
||
moodle moodle 1.8.2 |
||
moodle moodle 1.8.1 |
||
moodle moodle 1.9.18 |
||
moodle moodle 2.1.6 |
||
moodle moodle 2.1.1 |
||
moodle moodle 2.1.7 |
||
moodle moodle 2.1.3 |
||
moodle moodle 2.1.8 |
||
moodle moodle 1.4.1 |
||
moodle moodle 1.3.4 |
||
moodle moodle 1.4.3 |
||
moodle moodle 1.4.2 |
||
moodle moodle 1.3.0 |
||
moodle moodle 1.6.6 |
||
moodle moodle 1.3.3 |
||
moodle moodle 1.7.3 |
||
moodle moodle 1.6.0 |
||
moodle moodle 1.6.1 |
||
moodle moodle 1.6.2 |
||
moodle moodle 1.7.1 |
||
moodle moodle 1.9.7 |
||
moodle moodle 1.9.15 |
||
moodle moodle 1.8.6 |
||
moodle moodle 1.8.5 |
||
moodle moodle 1.9.14 |
||
moodle moodle 2.1.10 |
||
moodle moodle 2.1.4 |
||
moodle moodle 2.1.0 |
||
moodle moodle 2.0.4 |
||
moodle moodle 2.0.6 |
||
moodle moodle 2.0.0 |
||
moodle moodle 1.4.5 |
||
moodle moodle 1.8.8 |
||
moodle moodle 1.2.0 |
||
moodle moodle 1.3.1 |
||
moodle moodle 1.7.2 |
||
moodle moodle 1.8.14 |
||
moodle moodle 1.5.0 |
||
moodle moodle 1.5.1 |
||
moodle moodle 1.5.3 |
||
moodle moodle 1.9.4 |
||
moodle moodle 1.8.7 |
||
moodle moodle 1.9.5 |
||
moodle moodle 1.8.9 |
||
moodle moodle 1.8.4 |
||
moodle moodle 1.8.11 |
||
moodle moodle 1.9.1 |
||
moodle moodle 1.9.16 |
||
moodle moodle 1.9.12 |