Описание
Moodle Cross-site Scripting (XSS)
Insufficient escaping of participants' names in the participants page table resulted in a stored XSS risk when interacting with some features.
Пакеты
moodle/moodle
>= 4.3.0, < 4.3.4
4.3.4
moodle/moodle
>= 4.2.0, < 4.2.7
4.2.7
moodle/moodle
< 4.1.10
4.1.10
Связанные уязвимости
Insufficient escaping of participants' names in the participants page table resulted in a stored XSS risk when interacting with some features.
Insufficient escaping of participants' names in the participants page table resulted in a stored XSS risk when interacting with some features.
Insufficient escaping of participants' names in the participants page ...
Уязвимость виртуальной обучающей среды Moodle, связанная с непринятием мер по защите структуры веб-страницы позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
