Description

Moodle 1.6.1 and earlier allows remote attackers to obtain sensitive information via (1) help.php and (2) other unspecified vectors involving scheduled backups.

Remediation

References

CVE-2006-4786

Related Vulnerabilities

WordPress Plugin Fancy Product Designer-WooCommerce SQL Injection (4.7.4)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0126)

WordPress Plugin lasTunes Cross-Site Scripting (3.6.1)

phpMyAdmin Other Vulnerability (CVE-2007-4306)

WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.24.1)

Severity

Medium

Classification

CVE-2006-4786

Tags

Missing Update Known Vulnerabilities