Description
The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database.
Remediation
References
Related Vulnerabilities
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.11)
Atlassian Confluence CVE-2023-22505 Vulnerability (CVE-2023-22505)
WordPress Plugin WPGateway Privilege Escalation (3.5)
WordPress Plugin WPE Indoshipping Multiple Remote File Inclusion Vulnerabilities (2.5.0)
Oracle Database Server CVE-2009-1997 Vulnerability (CVE-2009-1997)