EDB-30921
webappsphpVERIFIED
MRBS 1.2.x - 'view_entry.php' SQL Injection
CVE-2007-6538
root@hanicker.it12/21/2007
CVE-2007-6538
NONESQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php in the MRBS plugin for Moodle allows remote attackers to execute arbitrary SQL commands via the id parameter.
Publicado: 12/27/2007Actualizado: 4/9/2025
Descripción
SQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php in the MRBS plugin for Moodle allows remote attackers to execute arbitrary SQL commands via the id parameter.
Análisis IAImpulsado por IA
Productos Afectados
mrbsmrbs
1.2.3
mrbsmrbs
1.2.5
moodlemoodle
Exploits Disponibles (1)
Referencias
- http://cvs.moodle.org/contrib/plugins/blocks/mrbs/web/view_entry.php?r1=1.1&r2=1.2
- http://osvdb.org/39619Exploit
- http://secunia.com/advisories/28198Vendor Advisory
- http://securityreason.com/securityalert/3492Exploit
- http://www.securityfocus.com/archive/1/485434/100/0/threaded
- http://www.securityfocus.com/archive/1/485455/100/200/threaded
- http://www.securityfocus.com/archive/1/485459/100/200/threaded
- http://www.securityfocus.com/bid/26977Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39190
- http://cvs.moodle.org/contrib/plugins/blocks/mrbs/web/view_entry.php?r1=1.1&r2=1.2
- http://osvdb.org/39619Exploit
- http://secunia.com/advisories/28198Vendor Advisory
- http://securityreason.com/securityalert/3492Exploit
- http://www.securityfocus.com/archive/1/485434/100/0/threaded
- http://www.securityfocus.com/archive/1/485455/100/200/threaded
- http://www.securityfocus.com/archive/1/485459/100/200/threaded
- http://www.securityfocus.com/bid/26977Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39190