CVE-2017-2641
Description
In Moodle 2.x and 3.x, SQL injection can occur via user preferences.
CWE
- (none)
Affected
- n/a / Moodle 2.x and 3.x — v=Moodle 2.x and 3.x [affected]
CVSS
- (none)
References
- https://www.exploit-db.com/exploits/41828/ exploit, x_refsource_EXPLOIT-DB
- http://www.securityfocus.com/bid/96977 vdb-entry, x_refsource_BID
- https://moodle.org/mod/forum/discuss.php?d=349419 x_refsource_CONFIRM
- http://www.securitytracker.com/id/1038174 vdb-entry, x_refsource_SECTRACK
Source
cvelistV5-main/cves/2017/2xxx/CVE-2017-2641.json