CyberSec.Space Logo
Back to CVE Browser

CVE-2006-4935

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1530%
EPSS Percentile40.06th
PublishedSep 23, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

The Database module in Moodle before 1.6.2 does not properly handle uploaded files, which has unspecified impact and remote attack vectors.

Affected Platforms (CPE)

📦
Moodle

Moodle

<= 1.6.1
📦
Moodle

Moodle

= 1.6.0

References & Advisories

🔗 http://docs.moodle.org/en/Release_notes#Moodle_1.6.2
🔗 http://docs.moodle.org/en/Release_notes#Moodle_1.6.2

Related Vulnerabilities

CVE-2004-223510.0

Unknown vulnerability in Moodle before 1.2 has unknown impact and attack vectors, related to improper filtering of text.

CVE-2004-223610.0

Unknown vulnerability in Moodle before 1.3.3 has unknown impact and attack vectors, related to language setting.

CVE-2004-223310.0

Unknown "front page vulnerability with Moodle servers" for Moodle before 1.3.2 has unknown impact and attack vectors.

CVE-2004-223710.0

Unknown vulnerability in Moodle before 1.3.4 has unknown impact and attack vectors, related to "strings in Moodle texts."