Lucene search
China National Vulnerability DatabaseCNVD-2021-93379HistoryNov 17, 2021 - 12:00 a.m.
Moodle Cross-Site Scripting Vulnerability (CNVD-2021-93379)
2021-11-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
21
moodle
cross-site scripting
vulnerability
url parameters
filtering
escaping
administrator tool
attacker
reflective
EPSS
0.001
Percentile
36.6%
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. cross-site scripting vulnerability exists in Moodle, which stems from the lack of effective filtering and escaping of URL parameters in the site administrator tool, allowing an attacker to execute reflective cross-site scripting.
Related
cvelist
cvelist
CVE-2021-43558
2021-11-22 15:59:46
osv
osv
CVE-2021-43558
2021-11-22 16:15:08
Cross-site Scripting in moodle
2021-11-23 00:00:51
BIT-moodle-2021-43558
2024-03-06 11:06:48
ubuntucve
ubuntucve
CVE-2021-43558
2021-11-22 00:00:00
prion
prion
Cross site scripting
2021-11-22 16:15:00
cve
cve
CVE-2021-43558
2021-11-22 16:15:08
nvd
nvd
CVE-2021-43558
2021-11-22 16:15:08
veracode
veracode
Cross-site Scripting (XSS)
2021-11-23 08:22:42
github
github
Cross-site Scripting in moodle
2021-11-23 00:00:51
nessus
nessus
Moodle 3.11.x < 3.11.4 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.11 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.8 Multiple Vulnerabilities
2023-02-20 00:00:00
openvas
openvas
Moodle < 3.9.11, 3.10.x < 3.10.8, 3.11.x < 3.11.4 Multiple Vulnerabilities
2021-11-23 00:00:00