moodle/moodle is vulnerable to SQL Injection attacks. The library does not properly sanitize user input in get_user_attempts.php
, allowing a malicious user to inject and execute arbitrary SQL queries.
CPE | Name | Operator | Version |
---|---|---|---|
moodle/moodle | le | v3.11.4 | |
moodle/moodle | le | v3.11.4 |