CVE-2021-20280

Опубликовано: 15 мар. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 3.5

CVSS3: 5.4

Описание

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE
impish	DNE

Показывать по

EPSS

Процентиль: 72%

0.0075

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3

CVE-2021-20280

CVSS3: 5.4

nvd

больше 4 лет назад

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

CVE-2021-20280

CVSS3: 5.4

debian

больше 4 лет назад

Text-based feedback answers required additional sanitizing to prevent ...

GHSA-x2jp-hh65-4xvf

CVSS3: 5.4

github

больше 4 лет назад

Cross-site scripting (XSS) and Server side request forgery (SSRF) in moodle

EPSS

Процентиль: 72%

0.0075

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3