CVE-2023-30944 Information

Description

The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database.

Reference

https://moodle.org/mod/forum/discuss.php?d=446286 https://bugzilla.redhat.com/show_bug.cgi?id=2188606 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77187