PT-2023-21651 · Moodle +1 · Moodle +1
Name of the Vulnerable Software and Affected Versions: Moodle versions prior to 4.1.1 Description: The issue is related to insufficient validation of profile field availability conditions, which results in an SQL injection risk. By default, this risk is only available to teachers and managers...