Description
Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.
Remediation
References
Related Vulnerabilities
WordPress Plugin arcResBookingWidget Multiple Vulnerabilities (1.0)
WordPress Plugin MStore API-Create Native Android & iOS Apps On The Cloud Security Bypass (4.14.7)
WordPress 4.0.x Cross-Site Scripting Vulnerability (4.0 - 4.0.8)
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32731)