Количество 2
Количество 2
CVE-2022-46147
Drag and Drop XBlock v2 implements a drag-and-drop style problem, where a learner has to drag items to zones on a target image. Versions prior to 3.0.0 are vulnerable to cross-site scripting in multiple XBlock Fields. Any platform that has deployed the XBlock may be impacted. Version 3.0.0 contains a patch for this issue. There are no known workarounds.
GHSA-qv6c-367r-3w6q
XBlock vulnerable to Cross-Site Scripting (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-46147 Drag and Drop XBlock v2 implements a drag-and-drop style problem, where a learner has to drag items to zones on a target image. Versions prior to 3.0.0 are vulnerable to cross-site scripting in multiple XBlock Fields. Any platform that has deployed the XBlock may be impacted. Version 3.0.0 contains a patch for this issue. There are no known workarounds. | CVSS3: 8.4 | 1% Низкий | около 3 лет назад |
| GHSA-qv6c-367r-3w6q XBlock vulnerable to Cross-Site Scripting (XSS) | CVSS3: 8.4 | 1% Низкий | около 3 лет назад |
Уязвимостей на страницу