Ldesignmedia

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** A risk of SQL injection was identified in the library responsible for fetching a user's enrolled courses. This issue is related to a lack of protection measures for SQL queries. Exploitation of this issue could allow a remote attacker to execute arbitrary code by sending specially crafted SQL queries. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.