Lucene search
RedhatCVELIST:CVE-2021-20279HistoryMar 15, 2021 - 9:35 p.m.
CVE-2021-20279
2021-03-1521:35:37
CWE-79
redhat
www.cve.org
The ID number user profile field required additional sanitizing to prevent a stored XSS risk in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.
CNA Affected
[
{
"product": "moodle",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Fixed in 3.10.2, 3.9.5, 3.8.8, 3.5.17"
}
]
}
]References
bugzilla.redhat.com/show_bug.cgi?id=1939033
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFSNJ7XHVTC52RSRX2GBQFF3VEEAY2MS/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFH5DDMU5TZ3JT4Q52WMRAHACA5MHIMT/
moodle.org/mod/forum/discuss.php?d=419650
Related
redhatcve
redhatcve
CVE-2021-20279
2022-05-20 23:33:38
prion
prion
Cross site scripting
2021-03-15 22:15:00
nvd
nvd
CVE-2021-20279
2021-03-15 22:15:13
veracode
veracode
Cross-Site Scripting (XSS)
2021-03-16 04:34:12
ubuntucve
ubuntucve
CVE-2021-20279
2021-03-15 00:00:00
cve
cve
CVE-2021-20279
2021-03-15 22:15:13
osv
osv
Moodle contains Stored XSS via ID number user profile field
2022-05-24 17:44:37
BIT-moodle-2021-20279
2024-03-06 11:11:03
CVE-2021-20279
2021-03-15 22:15:13
github
github
Moodle contains Stored XSS via ID number user profile field
2022-05-24 17:44:37
fedora
fedora
[SECURITY] Fedora 32 Update: moodle-3.8.8-1.fc32
2021-03-23 01:12:58
[SECURITY] Fedora 34 Update: moodle-3.10.2-1.fc34
2021-03-19 20:34:49
[SECURITY] Fedora 33 Update: moodle-3.9.5-1.fc33
2021-03-23 01:34:46
openvas
openvas
Fedora: Security Advisory for moodle (FEDORA-2021-431b232659)
2021-03-24 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2021-1c27e89d49)
2021-03-20 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2021-50f63a0161)
2021-03-24 00:00:00
nessus
nessus
Fedora 33 : moodle (2021-431b232659)
2021-03-23 00:00:00
Fedora 32 : moodle (2021-50f63a0161)
2021-03-23 00:00:00
Moodle 3.8.x < 3.8.8 Multiple Vulnerabilities
2023-02-20 00:00:00