Description

Multiple PHP remote file inclusion vulnerabilities in Moodle 1.7.1 allow remote attackers to execute arbitrary PHP code via a URL in the cmd parameter to (1) admin/utfdbmigrate.php or (2) filter.php.

Remediation

References

CVE-2007-1429

Related Vulnerabilities

SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1290)

WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (7.8)

OpenSSL Improper Input Validation Vulnerability (CVE-2010-0433)

MySQL Other Vulnerability (CVE-2005-2572)

WordPress Plugin RSVPMaker for Toastmasters Cross-Site Request Forgery (3.3.4)

Severity

High

Classification

CVE-2007-1429

Tags

Missing Update Known Vulnerabilities