CVE-2004-1978

Опубликовано: 30 апр. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in help.php in Moodle before 1.3 allows remote attackers to inject arbitrary HTML and web script via the text parameter.

Ссылки

http://marc.info/?l=bugtraq&m=108335043825605&w=2
http://secunia.com/advisories/11535
Patch
Vendor Advisory
http://securitytracker.com/id?1010008
http://www.osvdb.org/5747
http://www.securityfocus.com/bid/10251
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16023
http://marc.info/?l=bugtraq&m=108335043825605&w=2
http://secunia.com/advisories/11535
Patch
Vendor Advisory
http://securitytracker.com/id?1010008
http://www.osvdb.org/5747
http://www.securityfocus.com/bid/10251
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16023

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.2.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03642

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-1978

debian

около 21 года назад

Cross-site scripting (XSS) vulnerability in help.php in Moodle before ...

GHSA-2c5m-jj29-px47

github

около 3 лет назад