Description
In Moodle 3.2.x, global search displays user names for unauthenticated users.
Remediation
References
Related Vulnerabilities
WordPress Plugin Tatsu Arbitrary File Upload (3.3.11)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2022-23307)
WordPress Plugin WP Google Maps Cross-Site Request Forgery (7.11.27)
WordPress Plugin Lazy SEO Arbitrary File Upload (1.3.2)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-28335)