Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2006-4936

Moodle before 1.6.2 does not properly validate the module instance id when creating a course module object, which has unspecified impact and remote attack vectors.

Published: Sep 23, 2006
Updated: Nov 9, 2025
CVE: CVE-2006-4936
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
moodle / moodle	-	1.6.1.x
moodle / moodle	1.6.0	1.6.0.x

http://docs.moodle.org/en/Release_notes#Moodle_1.6.2

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo