CVE-2015-1493

Name of the Vulnerable Software and Affected Versions Moodle versions prior to 2.5.9 Moodle versions 2.6.x before 2.6.8 Moodle versions 2.7.x before 2.7.5 Moodle versions 2.8.x before 2.8.3

Description The issue exists due to incorrect restriction of the directory path name in the min get slash argument function of the lib/configonlylib.php component in the Moodle learning management system. This allows a remote attacker to read arbitrary files by exploiting the directory traversal vulnerability using a .. (dot dot) in the file parameter.

Recommendations For Moodle versions prior to 2.5.9, update to version 2.5.9 or later. For Moodle versions 2.6.x before 2.6.8, update to version 2.6.8 or later. For Moodle versions 2.7.x before 2.7.5, update to version 2.7.5 or later. For Moodle versions 2.8.x before 2.8.3, update to version 2.8.3 or later. As a temporary workaround, consider restricting access to the min get slash argument function in lib/configonlylib.php to minimize the risk of exploitation.