Family: CGI abuses --> Category: infos
Moodle SQL injection flaws Vulnerability Scan
Vulnerability Scan Summary
Acertains if Moodle is older than 1.4.3
Detailed Explanation for this Vulnerability Test
The remote host is running a version of the Moodle suite, an open-source
course management system written in PHP, which is older than version 1.4.3.
The remote version of this software is vulnerable to SQL injection issue
in 'glossary' module due to a lack of user input sanitization.
Solution : Upgrade to Moodle 1.4.3 or later.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.