The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle |
||
fedoraproject fedora 36 |
||
fedoraproject extra packages for enterprise linux 7.0 |
||
fedoraproject fedora 37 |
||
fedoraproject fedora 38 |