Description In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses. Remediation References CVE-2021-36392 Related Vulnerabilities WordPress Plugin Mail Subscribe List Unspecified Vulnerability (2.0.9) WordPress Plugin Google Captcha (reCAPTCHA) by BestWebSoft Cross-Site Scripting (1.27) WordPress Plugin PowerPress Podcasting by Blubrry SQL Injection (6.0.2) WordPress Plugin Easy Watermark Security Bypass (0.7.0) WordPress Plugin WP Songbook Cross-Site Scripting (2.0.11) Severity Critical Classification CVE-2021-36392 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities