Description Moodle before 2.2.2 has users' private files included in course backups Remediation References CVE-2012-1156 Related Vulnerabilities PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-7134) WordPress Plugin ManageWP Worker Unspecified Vulnerability (4.1.7) WordPress Plugin ThinkTwit Cross-Site Scripting (1.7.0) Jboss EAP Incorrect Authorization Vulnerability (CVE-2019-14843) MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-3455) Severity High Classification CVE-2012-1156 CWE-532 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities