VulnerableCode Package Details - pkg:composer/moodle/moodle@2.7.5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/moodle/moodle@2.7.5

Essentials
History (1)

purl	pkg:composer/moodle/moodle@2.7.5

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-r3f7-9paf-83ht	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Directory traversal vulnerability in the min_get_slash_argument function in lib/configonlylib.php in Moodle through 2.5.9, 2.6.x before 2.6.8, 2.7.x before 2.7.5, and 2.8.x before 2.8.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter, as demonstrated by reading PHP scripts.	CVE-2015-1493 GHSA-gphj-63h8-r9vq

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:42:37.288689+00:00	GitLab Importer	Fixing	VCID-r3f7-9paf-83ht	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2015-1493.yml	38.6.0