CVE-2006-4939
Moodle < 1.6.2 - Information Exposure via Backup Pathname in Trace Data
Title source: llmDescription
backup/backup_scheduled.php in Moodle before 1.6.2 generates trace data with the full backup pathname even when debugging is disabled, which might allow attackers to obtain the pathname.
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
http://docs.moodle.org/en/Release_notes#Moodle_1.6.2
Scores
EPSS
0.0034
EPSS Percentile
57.0%
Details
Status
published
Products (2)
moodle/moodle
1.6.0
moodle/moodle
< 1.6.1
Published
Sep 23, 2006
Tracked Since
Feb 18, 2026