Описание
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 1.5.3+20060108-1ubuntu1.1 |
| devel | released | 1.8.2-1 |
| edgy | not-affected | 1.6.2-1ubuntu1.1 |
| feisty | not-affected | 1.6.3-2ubuntu1 |
| gutsy | released | 1.8.2-1 |
| upstream | not-affected | 1.5.3 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
Multiple SQL injection vulnerabilities in the get_record function in d ...
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
EPSS
7.5 High
CVSS2