Description
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
Remediation
References
Related Vulnerabilities
WordPress Possible Security Bypass Vulnerability (0.70 - 4.7.4)
OpenSSL Resource Management Errors Vulnerability (CVE-2009-4355)
WordPress Plugin File Manager Unspecified Vulnerability (5.1.5)
WordPress Plugin Amministrazione Trasparente Cross-Site Request Forgery (7.1)
WordPress Plugin Elementor Website Builder Security Bypass (3.0.13)