2 matches found
Moodle < 1.6.2 Multiple Vulnerabilities
The installed version of Moodle fails to sanitize user-supplied input to a number of parameters and scripts. An attacker can leverage these issues to launch SQL injection and cross-site scripting attacks against the affected application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2006-4786
CVE-2006-4786 affects Moodle 1.6.1 and earlier. Remote attackers can obtain sensitive information via (1) help.php and (2) other unspecified vectors involving scheduled backups, causing partial confidentiality impact. The provided connected sources confirm the vulnerability pattern but do not inc...