Medium severity5.3NVD Advisory· Published Mar 26, 2017· Updated May 13, 2026
CVE-2017-2643
CVE-2017-2643
Description
In Moodle 3.2.x, global search displays user names for unauthenticated users.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 3.2, < 3.2.2 | 3.2.2 |
Affected products
9cpe:2.3:a:moodle:moodle:3.2.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:moodle:moodle:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:beta:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:3.2.1:*:*:*:*:*:*:*
- Range: Moodle 3.2.x
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- moodle.org/mod/forum/discuss.phpnvdPatchThird Party AdvisoryWEB
- www.securityfocus.com/bid/96978nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-98mf-mqw9-9q8qghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-2643ghsaADVISORY
- www.securitytracker.com/id/1038174nvdWEB
News mentions
0No linked articles in our index yet.