3 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-28329
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of profile field availability condition resulted in an SQL injection risk by default only available to teachers and managers...
CVE-2023-28329
CVE-2023-28329 concerns Moodle with an authenticated SQL injection via the profile field availability check. Documented affected ranges include Moodle 3.11–3.11.14, 4.0–4.0.8, 4.1–4.1.3, and 4.2. Affected vendor notes describe insufficient validation enabling SQL injection when retrieving profile...
CVE-2023-28329 Moodle: authenticated sql injection via availability check
Insufficient validation of profile field availability condition resulted in an SQL injection risk by default only available to teachers and managers...