Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2013-4940

Опубликовано: 29 июл. 2013
Источник: debian
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.10.2, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL. NOTE: this vulnerability exists because of a CVE-2013-4939 regression.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodlefixed2.5.1-1package
moodlenot-affectedsqueezepackage

EPSS

Процентиль: 56%
0.00344
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2013-4940

ubuntu
почти 12 лет назад

Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.10.2, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL. NOTE: this vulnerability exists because of a CVE-2013-4939 regression.

nvd логотип

CVE-2013-4940

nvd
почти 12 лет назад

Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.10.2, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL. NOTE: this vulnerability exists because of a CVE-2013-4939 regression.

github логотип

GHSA-x5hj-47vv-53p8

github
около 3 лет назад

YUI Cross-site Scripting (XSS) vulnerability

EPSS

Процентиль: 56%
0.00344
Низкий