Emiel Florijn

**Name of the Vulnerable Software and Affected Versions** Moodle versions prior to 2.5.9 Moodle versions 2.6.x before 2.6.8 Moodle versions 2.7.x before 2.7.5 Moodle versions 2.8.x before 2.8.3 **Description** The issue exists due to incorrect restriction of the directory path name in the `min get slash argument` function of the `lib/configonlylib.php` component in the Moodle learning management system. This allows a remote attacker to read arbitrary files by exploiting the directory traversal vulnerability using a `..` (dot dot) in the `file` parameter. **Recommendations** For Moodle versions prior to 2.5.9, update to version 2.5.9 or later. For Moodle versions 2.6.x before 2.6.8, update to version 2.6.8 or later. For Moodle versions 2.7.x before 2.7.5, update to version 2.7.5 or later. For Moodle versions 2.8.x before 2.8.3, update to version 2.8.3 or later. As a temporary workaround, consider restricting access to the `min get slash argument` function in `lib/configonlylib.php` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** HumHub versions 0.10.0-rc.1 and earlier **Description** The issue allows remote authenticated users to execute arbitrary SQL commands via the `from` parameter to "index.php". This can be leveraged for cross-site scripting (XSS) attacks via a request that causes an error. **Recommendations** For HumHub versions 0.10.0-rc.1 and earlier, consider restricting access to the "index.php" endpoint until a patch is available. As a temporary workaround, avoid using the `from` parameter in the affected endpoint to minimize the risk of exploitation.