Description
SQL injection vulnerability in blog/index.php in the blog module in Moodle 1.6.2 allows remote attackers to execute arbitrary SQL commands via a double-encoded tag parameter.
Remediation
References
Related Vulnerabilities
Grafana Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-21703)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3369)
Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-26691)
Claroline Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3716)
WordPress Plugin WordPress Calls to Action Cross-Site Scripting (2.2.7)