3 matches found
The vulnerability in the virtual learning environment Moodle, related to insufficient cleaning of user data, allows a hacker to execute arbitrary SQL commands.
The vulnerability in the virtual training environment Moodle is related to insufficient cleaning of user data on the “browse list of users” page of the administration site. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands by sending a specially created quer...
UBUNTU-CVE-2022-40315
A limited SQL injection risk was identified in the "browse list of users" site administration page...
PT-2022-5110 · Moodle +2 · Moodle +2
Name of the Vulnerable Software and Affected Versions: Moodle versions affected versions not specified Description: A limited SQL injection risk was identified in the "browse list of users" site administration page. The vulnerability is related to insufficient cleaning of user data on this page...