Moodle in English: Blind SQL Injection:

Blind SQL Injection:

The AppScan test result seems to indicate vulnerability because it shows that values can be appended

to parameter values confirmed that they were embedded in an SQL query. In this test, three (or

sometimes four) requests are sent. The last is logically equal to the original, and the next-to-last is

different. Any others are for control purposes. A comparison of the last two responses with the first

(the last is similar to it, and the next-to-last is different) indicates that the application is vulnerable. It

is recommended to Review possible solutions for hazardous character injection.

Vulnerable URL:

http://domainname/login/index.php

http://domainname/lib/javascript.php/1497470321/theme/academi/javascript/theme.js

Average of ratings: -

by Peter Svec - Tuesday, 3 October 2017, 7:17 PM

Can you please provide information about the version of Moodle you are using?

Average of ratings: -

by suraj kumar - Wednesday, 4 October 2017, 12:57 PM

i am using moodle version 3.1

Average of ratings: -

by Matteo Scaramuccia - Friday, 6 October 2017, 4:33 AM

Hello,
I'm guessing you're talking about http://www-01.ibm.com/support/docview.wss?uid=swg21659226 and with 3.1 you're talking about the latest version of 3.1s i.e. 3.1.8.

Would you share the exact pattern (i.e. the URLs) used by the tool to mark those two PHP pages "vulnerable"?

TIA,
Matteo

Average of ratings: -

Installing and upgrading help