Lucene search
Veracode Vulnerability DatabaseVERACODE:34698HistoryMar 15, 2022 - 12:41 p.m.
SQL Injection
2022-03-1512:41:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
24
sql injection
moodle
vulnerability
xml-rpc
mnet peer
authentication
security risk
EPSS
0.001
Percentile
37.0%
moodle/moodle is vulnerable to SQL Injection attacks. The library does not properly sanitize the keepalive_server function in the auth.php file allowing a malicious user to inject and execute malicious XML-RPC requests via the MNet peer.
Related
osv
osv
CVE-2021-32474
2022-03-11 18:15:15
BIT-moodle-2021-32474
2024-03-06 11:10:14
Moodle Blind SQL injection possible via MNet authentication
2022-03-12 00:00:32
ubuntucve
ubuntucve
CVE-2021-32474
2022-03-11 00:00:00
github
github
Moodle Blind SQL injection possible via MNet authentication
2022-03-12 00:00:32
nvd
nvd
CVE-2021-32474
2022-03-11 18:15:15
prion
prion
Sql injection
2022-03-11 18:15:00
cvelist
cvelist
CVE-2021-32474
2022-03-11 17:54:25
cve
cve
CVE-2021-32474
2022-03-11 18:15:15
openvas
openvas
redos
redos
nessus
nessus
Moodle 3.5.x < 3.5.18 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.8.x < 3.8.9 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.7 Multiple Vulnerabilities
2023-02-20 00:00:00