First published: Sat Sep 23 2006(Updated: )
login/forgot_password.php in Moodle before 1.6.2 allows remote attackers to obtain sensitive information (e-mail addresses and Moodle account names) via a find action.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Moodle Moodle | <=1.6.1 | |
Moodle Moodle | =1.6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.