Moodle · Moodle · CVE-2009-4305
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 1.8 through 1.8.10
Moodle versions 1.9 through 1.9.6
**Description**
The issue is related to a SQL injection vulnerability in the SCORM module, allowing remote authenticated users to execute arbitrary SQL commands. This is due to an escaping issue when processing AICC CRS files, specifically related to the `Course Title`.
**Recommendations**
For Moodle versions 1.8 through 1.8.10, update to version 1.8.11 or later.
For Moodle versions 1.9 through 1.9.6, update to version 1.9.7 or later.