Moodle · Moodle · CVE-2017-2641
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 2.x through 3.x
**Description**
The issue allows SQL injection via user preferences.
**Recommendations**
For Moodle versions 2.x through 3.x, update to a version that includes a fix for this issue.