Description Moodle 3.x has user fullname disclosure on the user preferences page. Remediation References CVE-2017-2642 Related Vulnerabilities Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3) Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1005) PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-11362) WordPress Plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Security Bypass (7.6.0) Envoy Proxy Out-of-bounds Write Vulnerability (CVE-2019-18801) Severity Medium Classification CVE-2017-2642 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities