Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 1.6.2 vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2006-4937
lib/setup.php in Moodle prior to 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages.
Moodle Moodle
Moodle Moodle 1.6.0
4
CVSSv2
CVE-2006-4938
help.php in Moodle prior to 1.6.2 does not check the existence of certain help files before including them, which might allow remote authenticated users to obtain the path in an error message.
Moodle Moodle 1.6.0
Moodle Moodle
5
CVSSv2
CVE-2006-4939
backup/backup_scheduled.php in Moodle prior to 1.6.2 generates trace data with the full backup pathname even when debugging is disabled, which might allow malicious users to obtain the pathname.
Moodle Moodle
Moodle Moodle 1.6.0
4.6
CVSSv2
CVE-2006-4942
Moodle prior to 1.6.2, when the configuration lacks (1) algebra or (2) tex filters, allows remote authenticated users to write LaTeX or MimeTeX output files to the top level of the dataroot directory via (a) filter/algebra/pix.php or (b) filter/tex/pix.php.
Moodle Moodle
Moodle Moodle 1.6.0
10
CVSSv2
CVE-2006-4935
The Database module in Moodle prior to 1.6.2 does not properly handle uploaded files, which has unspecified impact and remote attack vectors.
Moodle Moodle 1.6.0
Moodle Moodle
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3