CVE-2024-48896

Name of the Vulnerable Software and Affected Versions Moodle (affected versions not specified)

Description A vulnerability in Moodle is related to shortcomings in the error reporting mechanism. It allows a remote attacker to gain unauthorized access to protected information. The issue is also described as allowing users with the "send message" capability to view other users' names that they may not otherwise have access to via an error message in Messaging. The name returned follows the full name format configured on the site.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.