Lucene search
HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-2232
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.011
Percentile
84.3%
SQL injection vulnerability in sql.php in the Glossary module in Moodle 1.4.1 and earlier allows remote attackers to modify SQL statements.
Affected configurations
Node
moodlemoodleMatch1.1.1
ORmoodlemoodleMatch1.2.0
ORmoodlemoodleMatch1.2.1
ORmoodlemoodleMatch1.3.0
ORmoodlemoodleMatch1.3.1
ORmoodlemoodleMatch1.3.2
ORmoodlemoodleMatch1.3.3
ORmoodlemoodleMatch1.3.4
ORmoodlemoodleMatch1.4.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| moodle | moodle | 1.1.1 | cpe:2.3:a:moodle:moodle:1.1.1:*:*:*:*:*:*:* |
| moodle | moodle | 1.2.0 | cpe:2.3:a:moodle:moodle:1.2.0:*:*:*:*:*:*:* |
| moodle | moodle | 1.2.1 | cpe:2.3:a:moodle:moodle:1.2.1:*:*:*:*:*:*:* |
| moodle | moodle | 1.3.0 | cpe:2.3:a:moodle:moodle:1.3.0:*:*:*:*:*:*:* |
| moodle | moodle | 1.3.1 | cpe:2.3:a:moodle:moodle:1.3.1:*:*:*:*:*:*:* |
| moodle | moodle | 1.3.2 | cpe:2.3:a:moodle:moodle:1.3.2:*:*:*:*:*:*:* |
| moodle | moodle | 1.3.3 | cpe:2.3:a:moodle:moodle:1.3.3:*:*:*:*:*:*:* |
| moodle | moodle | 1.3.4 | cpe:2.3:a:moodle:moodle:1.3.4:*:*:*:*:*:*:* |
| moodle | moodle | 1.4.1 | cpe:2.3:a:moodle:moodle:1.4.1:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2004-2232
2005-07-17 04:00:00
cvelist
cvelist
CVE-2004-2232
2005-07-17 04:00:00
openvas
openvas
Moodle SQL injection flaws
2005-11-03 00:00:00
Moodle SQL injection flaws
2005-11-03 00:00:00
nessus
nessus
Moodle < 1.4.3 Multiple Vulnerabilities
2004-11-06 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.011
Percentile
84.3%
Related for NVD:CVE-2004-2232