Description

Multiple PHP remote file inclusion vulnerabilities in Moodle 1.7.1 allow remote attackers to execute arbitrary PHP code via a URL in the cmd parameter to (1) admin/utfdbmigrate.php or (2) filter.php.

Remediation

References

CVE-2007-1429

Related Vulnerabilities

XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2023-34466)

WordPress Plugin MP3 Audio Player for Music, Radio & Podcast by Sonaar Multiple Cross-Site Scripting Vulnerabilities (2.4.1)

WordPress Plugin YITH WooCommerce Product Add-Ons Security Bypass (1.5.21)

MySQL CVE-2021-35597 Vulnerability (CVE-2021-35597)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2488)

Severity

High

Classification

CVE-2007-1429

Tags

Missing Update Known Vulnerabilities