CVE-2006-4939 Information

Description

backup/backup_scheduled.php in Moodle before 1.6.2 generates trace data with the full backup pathname even when debugging is disabled which might allow attackers to obtain the pathname.

Reference

http://docs.moodle.org/en/Release_notesMoodle_1.6.2