NVD

Id
51428  
Name
CVE-2009-4305  
Description
SQL injection vulnerability in the SCORM module in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 allows remote authenticated users to execute arbitrary SQL commands via vectors related to an "escaping issue when processing AICC CRS file (Course_Title)."  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-12-15  
Modified Date
2009-12-16  
Seq
2009-4305  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
260850 51428 CVE-2009-4305 http://docs.moodle.org/en/Moodle_1.8.11_release_notes  View
260851 51428 CVE-2009-4305 http://docs.moodle.org/en/Moodle_1.9.7_release_notes  View
260852 51428 CVE-2009-4305 http://moodle.org/mod/forum/discuss.php?d=139120  View
260853 51428 CVE-2009-4305 37244  View
260854 51428 CVE-2009-4305 ADV-2009-3455  View
260855 51428 CVE-2009-4305 FEDORA-2009-13040  View
260856 51428 CVE-2009-4305 FEDORA-2009-13065  View
260857 51428 CVE-2009-4305 FEDORA-2009-13080  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
44196 JVNDB-2009-005203 Moodle の SCORM モジュールにおける SQL インジェクションの脆弱性 Moodle の SCORM モジュールには、SQL インジェクションの脆弱性が存在します。 CVE-2009-4305 41736 CVE-2009-4305 51428 6.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005203.html 2009-12-02 2012-09-25 View