EDB-30921
webappsphpVERIFIED
MRBS 1.2.x - 'view_entry.php' SQL Injection
CVE-2007-6538
root@hanicker.it12/21/2007
CVE-2007-6538
NONESQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php in the MRBS plugin for Moodle allows remote attackers to execute arbitrary SQL commands via the id parameter.
Published: 12/27/2007Updated: 4/9/2025
Description
SQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php in the MRBS plugin for Moodle allows remote attackers to execute arbitrary SQL commands via the id parameter.
AI AnalysisPowered by AI
Affected Products
mrbsmrbs
1.2.3
mrbsmrbs
1.2.5
moodlemoodle
Available Exploits (1)
References
- http://cvs.moodle.org/contrib/plugins/blocks/mrbs/web/view_entry.php?r1=1.1&r2=1.2
- http://osvdb.org/39619Exploit
- http://secunia.com/advisories/28198Vendor Advisory
- http://securityreason.com/securityalert/3492Exploit
- http://www.securityfocus.com/archive/1/485434/100/0/threaded
- http://www.securityfocus.com/archive/1/485455/100/200/threaded
- http://www.securityfocus.com/archive/1/485459/100/200/threaded
- http://www.securityfocus.com/bid/26977Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39190
- http://cvs.moodle.org/contrib/plugins/blocks/mrbs/web/view_entry.php?r1=1.1&r2=1.2
- http://osvdb.org/39619Exploit
- http://secunia.com/advisories/28198Vendor Advisory
- http://securityreason.com/securityalert/3492Exploit
- http://www.securityfocus.com/archive/1/485434/100/0/threaded
- http://www.securityfocus.com/archive/1/485455/100/200/threaded
- http://www.securityfocus.com/archive/1/485459/100/200/threaded
- http://www.securityfocus.com/bid/26977Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39190