CVE-2024-43429: Moodle has user information visibility control issues in gradebook reports
(updated )
A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the “view hidden user fields” capability having access to the information.
References
Detect and mitigate CVE-2024-43429 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →