Описание
lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1.8.2-1 |
| edgy | not-affected | 1.6.2-1ubuntu1.1 |
| feisty | not-affected | 1.6.3-2ubuntu1 |
| gutsy | not-affected | 1.8.2-1 |
| hardy | not-affected | 1.8.2-1 |
| intrepid | not-affected | 1.8.2-1 |
| jaunty | not-affected | 1.8.2-1 |
| karmic | not-affected | 1.8.2-1 |
| upstream | released | 1.6.2 |
Показывать по
Ссылки на источники
4 Medium
CVSS2
Связанные уязвимости
lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages.
lib/setup.php in Moodle before 1.6.2 sets the error reporting level to ...
lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages.
4 Medium
CVSS2