1 results (0.002 seconds)
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2009-3778
https://notcve.org/view.php?id=CVE-2009-3778
SQL injection vulnerability in Moodle Course List 6.x before 6.x-1.2, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Vulnerabilidad de inyección SQL en Moodle Course List v6.x anteriores a v6.x-1.2, permite a atacantes remotos ejecutar comandos SQL de su elección a través de vectores no especificados. • http://drupal.org/node/610986 http://osvdb.org/59100 http://secunia.com/advisories/37126 http://www.securityfocus.com/bid/36787 http://www.vupen.com/english/advisories/2009/3001 https://exchange.xforce.ibmcloud.com/vulnerabilities/53895 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •