Human Resources and ELM - PSFT (MOSC)

MOSC Banner

ELM Privacy/Security Problem - Learners able to access other users courses after launching course.

in Human Resources and ELM - PSFT (MOSC) Question

Below are the ways to replicate the issues.

  • After launching the course, you need to change the URL parameter.
  • If the values for LM_ENRLMT_ID and LM_LC_ID match in ps_lm_sco12_flu_vw, the course loads successfully.
  • When you inspect the page elements, you can see the learner details in these fields:
    • cmi.core.student_id – UCID of the person taking the course
    • cmi.core.student_name – Name of the person taking the course

Did anyone face similar issues? We have a learner raise this privacy issue.. I did create an SR too. Just wanted to check in community.

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

PSFT HR Tags

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center