CVE-2022-42924

Name of the Vulnerable Software and Affected Versions Forma LMS versions 3.1.0 and earlier

Description The issue allows an authenticated attacker, with the role of a student, to perform a SQL injection on the dyn filter parameter in the "appLms/ajax.adm server.php?r=widget/userselector/getusertabledata" function. This could enable the attacker to dump the entire database.

Recommendations For Forma LMS versions 3.1.0 and earlier, as a temporary workaround, consider restricting access to the "appLms/ajax.adm server.php?r=widget/userselector/getusertabledata" function to minimize the risk of exploitation. Avoid using the dyn filter parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.