Lucene search
K

7 matches found

BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.9 views

The vulnerability in the virtual learning environment Moodle, related to insufficient cleaning of user data, allows a hacker to execute arbitrary SQL commands.

The vulnerability in the virtual training environment Moodle is related to insufficient cleaning of user data on the “browse list of users” page of the administration site. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands by sending a specially created quer...

10CVSS6.7AI score0.0083EPSS
Exploits0References8Affected Software3
OSV
OSV
added 2022/09/30 5:15 p.m.20 views

CVE-2022-40315

A limited SQL injection risk was identified in the "browse list of users" site administration page...

9.8CVSS7.6AI score
Exploits0References2
OSV
OSV
added 2022/09/30 5:15 p.m.2 views

UBUNTU-CVE-2022-40315

A limited SQL injection risk was identified in the "browse list of users" site administration page...

9.8CVSS5.9AI score0.0083EPSS
Exploits0References2
Prion
Prion
added 2022/08/03 3:15 a.m.17 views

Information disclosure

Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The affected versions are before version 4.22.2...

4CVSS4.4AI score0.00525EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/03 2:20 a.m.19 views

CVE-2022-36800

Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The affected versions are before version 4.22.2...

6.8AI score0.00525EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/03 12:0 a.m.3 views

CVE-2022-36800

Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The affected versions are before version 4.22.2...

4.3CVSS5.9AI score0.00525EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/11/08 12:0 a.m.5 views

PT-2022-5110 · Moodle +2 · Moodle +2

Name of the Vulnerable Software and Affected Versions: Moodle versions affected versions not specified Description: A limited SQL injection risk was identified in the "browse list of users" site administration page. The vulnerability is related to insufficient cleaning of user data on this page...

10CVSS7.3AI score0.49102EPSS
Exploits3References79
Rows per page
Query Builder