Moodle · Moodle · CVE-2024-43429
**Name of the Vulnerable Software and Affected Versions**
Moodle (affected versions not specified)
**Description**
A flaw in Moodle allows hidden user profile fields to be visible in gradebook reports. This could result in users without the `view hidden user fields` capability having access to confidential information. The issue is related to the storage of critical information in an open manner, which can be exploited by a remote attacker to gain access to sensitive information.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.