Description
The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1) username, (2) firstname, and (3) lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors.
Remediation
References
Related Vulnerabilities
WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.18)
WordPress Plugin Redirection Cross-Site Request Forgery (1.1.4)
Java Denial of Service (DoS) Vulnerability (CVE-2018-3180)
WordPress Plugin Advanced Permalinks Cross-Site Scripting (0.1.19)
WordPress Plugin Vodpod Video Gallery 'gid' Parameter Cross-Site Scripting (3.1.5)