Description

Moodle 1.6.1 and earlier allows remote attackers to obtain sensitive information via (1) help.php and (2) other unspecified vectors involving scheduled backups.

Remediation

References

CVE-2006-4786

Related Vulnerabilities

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2003-0096)

CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-2090)

WordPress Plugin LayerSlider Multiple Vulnerabilities (6.2.0)

PHP Resource Management Errors Vulnerability (CVE-2010-4150)

WordPress Plugin Floating Cart for WooCommerce Security Bypass (1.2.2)

Severity

Medium

Classification

CVE-2006-4786

Tags

Missing Update Known Vulnerabilities