CVE-2006-4937 Information

Description

lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled which might allow remote authenticated users to obtain sensitive information by triggering the messages.

Reference

http://docs.moodle.org/en/Release_notesMoodle_1.6.2