Description

Multiple PHP remote file inclusion vulnerabilities in Moodle 1.7.1 allow remote attackers to execute arbitrary PHP code via a URL in the cmd parameter to (1) admin/utfdbmigrate.php or (2) filter.php.

Remediation

References

CVE-2007-1429

Related Vulnerabilities

WordPress Plugin YITH WooCommerce Compare Security Bypass (2.3.13)

WordPress Plugin Facebook Page Feed Timeline Cross-Site Scripting (1.0)

PHP Other Vulnerability (CVE-2007-1884)

Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.5)

Plone CMS Resource Management Errors Vulnerability (CVE-2012-5499)

Severity

High

Classification

CVE-2007-1429

Tags

Missing Update Known Vulnerabilities