Security Advisory

CVE-2013-4313

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-09-16 10:00:00

Last updated 2024-09-17 03:14:06

Assigner redhat

State PUBLISHED

Description

Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and 2.5.x before 2.5.2 does not prevent use of 0 characters in query strings, which might allow remote attackers to conduct SQL injection attacks against Microsoft SQL Server via a crafted string.

← Browse all CVEs View on cve.org ↗