CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS
Percentile
61.5%
SQL injection vulnerability in the SCORM module in Moodle 1.8 before 1.8.11
and 1.9 before 1.9.7 allows remote authenticated users to execute arbitrary
SQL commands via vectors related to an “escaping issue when processing AICC
CRS file (Course_Title).”