Back to search
CVE-2021-40694
Published: Jan 21, 2022
Modified: Aug 4, 2024
PUBLISHED
Description
Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.
| Vendor | Product | Versions |
|---|---|---|
n/a | moodle | affected 3.11 to 3.11.2, 3.10 to 3.10.6, 3.9 to 3.9.9 and earlier unsupported versions |
References
https://bugzilla.redhat.com/show_bug.cgi?id=2043421
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now