Moodle Jmol Filter 6.1 directory traversal vulnerability

Summary

Moodle Jmol Filter 6.1 exists directory traversal vulnerability, the product application has the function of operating files, restrictions are not strict will lead to access to the WEB directory unexpected files, through the vulnerability overstep the right to access or overwrite sensitive data.

Solution

At present, the manufacturer has issued an upgrade patch to fix the vulnerability.

https://moodle.org/plugins/filter_jmol