CVE-2006-4938

EPSS 0.24%
Published 23.09.2006 00:07:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

help.php in Moodle before 1.6.2 does not check the existence of certain help files before including them, which might allow remote authenticated users to obtain the path in an error message.

Affected products Warnungen 0 Metrics 2 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Moodle ≫ Moodle Version <= 1.6.1

Moodle ≫ Moodle Version1.6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.24%	0.462

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:P/I:N/A:N

http://docs.moodle.org/en/Release_notes#Moodle_1.6.2

https://nvd.nist.gov/vuln/detail/CVE-2006-4938

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4938

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4938

EUVD