Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2023-35132 - Vulnerability Database
Moodle

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2023-35132

Medium
Reference: CVE-2023-35132
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-35132
Title: Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

A limited SQL injection risk was identified on the Mnet SSO access control page. This flaw affects Moodle versions 4.2 4.1 to 4.1.3 4.0 to 4.0.8 3.11 to 3.11.14 3.9 to 3.9.21 and earlier unsupported versions.