User Discovery Vulnerability in Moodle Chat Functionality

CVE-2011-4304 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover the name of any user via a beep operation.

Learn more about our User Device Pen Test.