Description

The Database module in Moodle before 1.6.2 does not properly handle uploaded files, which has unspecified impact and remote attack vectors.

Remediation

References

CVE-2006-4935

Related Vulnerabilities

WordPress Plugin PWA for WP & AMP Security Bypass (1.7.32)

WordPress Plugin Popup Builder-Create highly converting, mobile friendly marketing popups Cross-Site Scripting (3.69.6)

WordPress 2.3.2 Post Edit Unauthorized Access Vulnerability (0.7 - 2.3.2)

WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4338)

WordPress Plugin WPBakery Page Builder Clipboard Security Bypass (4.5.7)

Severity

Critical

Classification

CVE-2006-4935 CWE-20

Tags

Missing Update Known Vulnerabilities