Description
Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2004-0173)
WordPress Plugin Basic Dev Tools Multiple Cross-Site Scripting Vulnerabilities (1.4.1)
WordPress Plugin Church Admin Cross-Site Scripting (0.856)
Chamilo Improper Handling of Case Sensitivity Vulnerability (CVE-2023-3545)
WordPress Plugin Quotes Collection Cross-Site Request Forgery (1.5.5.1)