Sensitive Answer Information Disclosure in Moodle Matching Activity

Sensitive Answer Information Disclosure in Moodle Matching Activity

CVE-2013-2243 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

mod/lesson/pagetypes/matching.php in Moodle through 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 allows remote authenticated users to obtain sensitive answer information by reading the HTML source code of a document.

Learn more about our User Device Pen Test.