4
CVE-2006-4937
- EPSS 0.99%
- Veröffentlicht 23.09.2006 00:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:09
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.99% | 0.58 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
http://docs.moodle.org/en/Release_notes#Moodle_1.6.2