CVE-2022-40315

A limited SQL injection risk was identified in the "browse list of users" site administration page.
References
Link Resource
https://moodle.org/mod/forum/discuss.php?d=438394 Patch Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2128150 Issue Tracking Patch Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

Information

Published : 2022-09-30 10:15

Updated : 2022-10-04 09:51


NVD link : CVE-2022-40315

Mitre link : CVE-2022-40315


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

fedoraproject

  • extra_packages_for_enterprise_linux
  • fedora

moodle

  • moodle