Description
SQL injection vulnerability in blog/index.php in the blog module in Moodle 1.6.2 allows remote attackers to execute arbitrary SQL commands via a double-encoded tag parameter.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-1999-0739)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5097)
MySQL CVE-2016-0504 Vulnerability (CVE-2016-0504)
WordPress Plugin is_human() 'type' Parameter Remote Command Injection (1.4.2)
WordPress Plugin One page checkout and layouts for woocommerce Unspecified Vulnerability (2.7)