Error-based blind SQL injection with bit-shifting approach for Moodle 3.10.4
CVE-2021-36393 Error-based blind SQL injection with bit-shifting approach for Moodle 3104 Allows an attacker to perform arbitrary database queries For example, you can steal: test answers from the database Modify the scriptjs file and run it on route /mod/quiz/attemptphp?attempt=&cmid= user password hashes: (SELECT password FROM mdl_user WHERE id = 2 LIM