cve/2023/CVE-2023-35132.md

### [CVE-2023-35132](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35132)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20SQL%20Command%20('SQL%20Injection')&color=brighgreen)

### Description

A limited SQL injection risk was identified on the Mnet SSO access control page. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/kip93/kip93
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-35132](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35132)`
Update CVE sources 2024-05-28 08:49 2024-05-28 08:49:17 +00:00			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
Update CVE sources 2024-05-28 08:49 2024-05-28 08:49:17 +00:00			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20SQL%20Command%20('SQL%20Injection')&color=brighgreen)`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00
			`### Description`

			`A limited SQL injection risk was identified on the Mnet SSO access control page. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/kip93/kip93`