[MEDIUM] Moodle vulnerable to site administration SQL injection via XMLDB editor

PKSA-sbn5-p35x-1nwr CVE-2024-43436 GHSA-mx26-62xm-2p83

Affected package: moodle/moodle

Affected version: >=4.4.0-beta,<4.4.2|>=4.3.0-beta,<4.3.6|>=4.2.0-beta,<4.2.9|<4.1.12

Reported by:
GitHub