14 matches found
EUVD-2024-3286
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-43436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. CVE-2024-43436 Note that Nessus relies on the presence of the...
BIT-MOODLE-2024-43436 Moodle: site administration sql injection via xmldb editor
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
SQL Injection
moodle/moodle is vulnerable to SQL injection. The vulnerability is due to insufficient input validation or sanitization in the XMLDB editor tool, which allows attackers to inject and execute unauthorized SQL commands...
Moodle SQL Injection Vulnerability (CNVD-2024-44850)
Moodle is Moodle open source set of free e-learning software platform, also known as course management system, learning management system or virtual learning environment. Moodle suffers from an SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements i...
GHSA-MX26-62XM-2P83 Moodle vulnerable to site administration SQL injection via XMLDB editor
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
Moodle vulnerable to site administration SQL injection via XMLDB editor
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
SQL Injection
Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to SQL Injection through the XMLDB editor tool. An attacker with administrative privileges can manipulate database queries and potentially access or modify data without proper authorization by injectin...
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
CVE-2024-43436 Moodle: site administration sql injection via xmldb editor
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
CVE-2024-43436
CVE-2024-43436 affects Moodle and is caused by a SQL injection risk in the XMLDB editor tool available to site administrators. Public sources in the connected documents describe that the vulnerability stems from insufficient validation of externally entered SQL statements within the XMLDB editor,...
CVE-2024-43436 Moodle: site administration sql injection via xmldb editor
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators...
PT-2024-8616 · Moodle +2 · Moodle +2
Name of the Vulnerable Software and Affected Versions: Moodle versions affected versions not specified Description: A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. This issue is related to the lack of protection against SQL query structure...