Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2024-43436 - Vulnerability Database

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2024-43436

High

Reference: CVE-2024-43436

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-43436

Title: Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

Overview:

A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.