Description

Multiple PHP remote file inclusion vulnerabilities in Moodle 1.7.1 allow remote attackers to execute arbitrary PHP code via a URL in the cmd parameter to (1) admin/utfdbmigrate.php or (2) filter.php.

Remediation

References

CVE-2007-1429

Related Vulnerabilities

WordPress Plugin Fast Secure Contact Form Remote Code Execution (4.0.44)

WordPress Plugin Maintenance Cross-Site Scripting (4.02)

MediaWiki Unquoted Search Path or Element Vulnerability (CVE-2021-31553)

WebLogic CVE-2022-21261 Vulnerability (CVE-2022-21261)

WordPress Plugin Advanced Custom Fields (ACF) Security Bypass (5.9.9)

Severity

High

Classification

CVE-2007-1429

Tags

Missing Update Known Vulnerabilities