Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 79.4%