Description A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria. Remediation References CVE-2022-30599 Related Vulnerabilities Oracle Database Server CVE-2009-1966 Vulnerability (CVE-2009-1966) WordPress Plugin Gallery for Social Photo Unspecified Vulnerability (1.0.0.25) WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner SQL Injection (4.2.161) Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5337) WebLogic CVE-2022-21353 Vulnerability (CVE-2022-21353) Severity Critical Classification CVE-2022-30599 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities