2013-05-25 01:00:00
redhat
PUBLISHED
Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider "dont send" attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data.