Lucene search

CVE-2020-25631

🗓️ 08 Dec 2020 01:12:15Reported by redhatType

Vulnerability in Moodle versions 3.7 to 3.9.1 allowed JavaScript injection in book chapter titl

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
NVD	CVE-2020-25631	8 Dec 202001:15	–	nvd
OSV	UBUNTU-CVE-2020-25631	8 Dec 202001:15	–	osv
OSV	CVE-2020-25631	8 Dec 202001:15	–	osv
OSV	BIT-MOODLE-2020-25631	6 Mar 202411:11	–	osv
OSV	GHSA-4W4J-9533-82QG Moodle Cross-site Scripting (XSS)	24 May 202217:35	–	osv
Prion	Design/Logic Flaw	8 Dec 202001:15	–	prion
CNVD	Moodle Cross-Site Scripting Vulnerability (CNVD-2021-28738)	15 Dec 202000:00	–	cnvd
Github Security Blog	Moodle Cross-site Scripting (XSS)	24 May 202217:35	–	github
OpenVAS	Moodle 3.7.x < 3.7.8, 3.8.x < 3.8.5, 3.9.x < 3.9.2 Input Escape Vulnerability	10 Dec 202000:00	–	openvas
Cvelist	CVE-2020-25631	8 Dec 202000:10	–	cvelist

Nvd

Vulners

Node

moodle moodleRange3.7.0–3.7.8

moodle moodleRange3.8.0–3.8.5

moodle moodleRange3.9.0–3.9.2

[
  {
    "product": "Moodle",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "3.9 to 3.9.1, 3.8 to 3.8.4 and 3.7 to 3.7.7"
      }
    ]
  }
]

Source	Link
moodle	www.moodle.org/mod/forum/discuss.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Dec 2020 01:15Current

5.8Medium risk

Vulners AI Score5.8

CVSS24.3

CVSS36.1

EPSS0.00416

CWE-79