CVE-2009-4298

CVE-2009-4298 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1) username, (2) firstname, and (3) lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors.

Learn more about our User Device Pen Test.