Medium severity4.3NVD Advisory· Published Jul 10, 2018· Updated Jun 17, 2026
CVE-2018-10889
CVE-2018-10889
Description
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. No option existed to omit logs from data privacy exports, which may contain details of other users who interacted with the requester.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 3.5, < 3.5.1 | 3.5.1 |
moodle/moodlePackagist | >= 3.4.3, < 3.4.4 | 3.4.4 |
moodle/moodlePackagist | >= 3.3, < 3.3.7 | 3.3.7 |
Affected products
1Patches
Vulnerability mechanics
References
7- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party AdvisoryWEB
- moodle.org/mod/forum/discuss.phpnvdPatchVendor AdvisoryWEB
- www.securityfocus.com/bid/104733nvdThird Party AdvisoryVDB Entry
- github.com/advisories/GHSA-wmvq-q9h8-7j4gghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-10889ghsaADVISORY
- github.com/moodle/moodle/commit/720d5b3b8559a97b7d6dd77351fb8d1cd8890f14ghsaWEB
- web.archive.org/web/20210124185814/http://www.securityfocus.com/bid/104733ghsaWEB
News mentions
0No linked articles in our index yet.