Moodle

The SQL injection flaw in the open-source educational platform Moodle could enable an attacker to access sensitive information on any database server.

An attacker can also penetrate the system as a teacher and insert a malicious SQL query while creating custom badges.

This vulnerability can also be used to store XSS attacks.

Source: https://portswigger.net/daily-swig/sql-injection-vulnerability-in-e-learning-platform-moodle-could-enable-database-takeover

TPRM report: https://scoringcyber.rankiteo.com/company/moodle

"id": "moo3359322",
"linkid": "moodle",
"type": "Vulnerability",
"date": "03/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'industry': 'Education',
                        'name': 'Moodle',
                        'type': 'Open-Source Educational Platform'}],
 'attack_vector': 'Custom Badges Creation',
 'data_breach': {'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Sensitive Information'},
 'description': 'The SQL injection flaw in the open-source educational '
                'platform Moodle could enable an attacker to access sensitive '
                'information on any database server. An attacker can also '
                'penetrate the system as a teacher and insert a malicious SQL '
                'query while creating custom badges. This vulnerability can '
                'also be used to store XSS attacks.',
 'impact': {'data_compromised': 'Sensitive Information',
            'systems_affected': 'Database Server'},
 'initial_access_broker': {'entry_point': 'Custom Badges Creation'},
 'motivation': ['Data Theft', 'System Penetration', 'XSS Attacks'],
 'post_incident_analysis': {'root_causes': 'SQL Injection Vulnerability'},
 'title': 'SQL Injection Vulnerability in Moodle',
 'type': 'SQL Injection',
 'vulnerability_exploited': 'SQL Injection'}

Moodle

Brown, Lisle/Cummings, Inc.

Westmoreland Mechanical Testing & Research, Inc.

Perkins & Co