Описание
Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1.9.4.dfsg-0ubuntu1 |
| gutsy | ignored | end of life, was needs-triage |
| hardy | released | 1.8.2-1ubuntu4.2 |
| intrepid | released | 1.8.2-1.2ubuntu2.1 |
| jaunty | not-affected | 1.9.4.dfsg-0ubuntu1 |
| karmic | not-affected | 1.9.4.dfsg-0ubuntu1 |
| upstream | released | 1.8.2.dfsg-1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).
Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 b ...
Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).
EPSS
4.3 Medium
CVSS2