Количество 5
Количество 5
CVE-2015-3274
Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an external_format_text call in a web service.
CVE-2015-3274
Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an external_format_text call in a web service.
CVE-2015-3274
Cross-site scripting (XSS) vulnerability in the user_get_user_details ...
GHSA-f7qm-q26p-6rr2
Moodle cross-site scripting (XSS) vulnerability
BDU:2016-00587
Уязвимость системы управления обучением Мoodle, позволяющая нарушителю внедрить произвольный Веб- или HTML-код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2015-3274 Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an external_format_text call in a web service. | CVSS3: 6.1 | 0% Низкий | больше 9 лет назад |
 | CVE-2015-3274 Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an external_format_text call in a web service. | CVSS3: 6.1 | 0% Низкий | больше 9 лет назад |
| CVE-2015-3274 Cross-site scripting (XSS) vulnerability in the user_get_user_details ... | CVSS3: 6.1 | 0% Низкий | больше 9 лет назад |
| GHSA-f7qm-q26p-6rr2 Moodle cross-site scripting (XSS) vulnerability | CVSS3: 6.1 | 0% Низкий | около 3 лет назад |
 | BDU:2016-00587 Уязвимость системы управления обучением Мoodle, позволяющая нарушителю внедрить произвольный Веб- или HTML-код | CVSS2: 4.3 | 0% Низкий | больше 9 лет назад |
Уязвимостей на страницу