Lucene search
FedoraCVELIST:CVE-2023-28332HistoryMar 23, 2023 - 12:00 a.m.
CVE-2023-28332 Moodle: algebra filter xss when filter is misconfigured
2023-03-2300:00:00
CWE-79
fedora
www.cve.org
cve-2023-28332
moodle
algebra filter
xss
misconfiguration
If the algebra filter was enabled but not functional (eg the necessary binaries were missing from the server), it presented an XSS risk.
CNA Affected
[
{
"versions": [
{
"status": "affected",
"version": "4.1.0",
"lessThan": "4.1.2",
"versionType": "semver"
},
{
"status": "affected",
"version": "4.0.0",
"lessThan": "4.0.7",
"versionType": "semver"
},
{
"status": "affected",
"version": "3.11.0",
"lessThan": "3.11.13",
"versionType": "semver"
},
{
"status": "affected",
"version": "0",
"lessThan": "3.9.20",
"versionType": "semver"
}
],
"packageName": "moodle",
"collectionURL": "https://git.moodle.org",
"defaultStatus": "unaffected"
}
]Related
prion
prion
Design/Logic Flaw
2023-03-23 21:15:00
osv
osv
CVE-2023-28332
2023-03-23 21:15:20
Moodle vulnerable to Cross-site Scripting when algebra filter enabled but not functional
2023-03-23 21:30:18
BIT-moodle-2023-28332
2024-03-06 11:00:21
ubuntucve
ubuntucve
CVE-2023-28332
2023-03-23 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2023-03-29 15:54:31
cve
cve
CVE-2023-28332
2023-03-23 21:15:20
github
github
nvd
nvd
CVE-2023-28332
2023-03-23 21:15:20
openvas
openvas
Fedora: Security Advisory for moodle (FEDORA-2023-d9c13996b2)
2023-03-31 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: moodle-3.11.13-1.fc36
2023-03-30 01:16:28
nessus
nessus
Fedora 36 : moodle (2023-d9c13996b2)
2023-03-30 00:00:00