Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-40315

A limited SQL injection risk was identified in the "browse list of users" site administration page.

Published

2022-09-30T17:15:13.493

Last Modified

2025-05-20T17:15:45.457

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses
  • Type: Primary
    CWE-89
  • Type: Secondary
    CWE-89
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application moodle moodle < 3.9.17 Yes
Application moodle moodle < 3.11.10 Yes
Application moodle moodle < 4.0.4 Yes
Application fedoraproject extra_packages_for_enterprise_linux 8.0 Yes
Operating System fedoraproject fedora 35 Yes
Operating System fedoraproject fedora 36 Yes
References