Description
In Moodle 2.x and 3.x, SQL injection can occur via user preferences.
Remediation
References
Related Vulnerabilities
Moodle Uncontrolled Resource Consumption Vulnerability (CVE-2021-20185)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90)
WordPress Plugin Zoho CRM Lead Magnet Cross-Site Scripting (1.7.2.8)
WordPress Plugin Custom Field Template PHP Object Injection (2.5.7)
Apache HTTP Server Use After Free Vulnerability (CVE-2017-9789)