Lucene search

CVE-2021-20279

🗓️ 15 Mar 2021 22:13:15Reported by [email protected]Type

The user profile field in Moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17 allows stored XSS risk due to lack of sanitizatio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 24
RedhatCVE	CVE-2021-20279	20 May 202223:33	–	redhatcve
Cvelist	CVE-2021-20279	15 Mar 202121:35	–	cvelist
Prion	Cross site scripting	15 Mar 202122:15	–	prion
OSV	BIT-MOODLE-2021-20279	6 Mar 202411:11	–	osv
OSV	CVE-2021-20279	15 Mar 202122:15	–	osv
OSV	GHSA-H7H6-FWPV-GGVX Moodle contains Stored XSS via ID number user profile field	24 May 202217:44	–	osv
Veracode	Cross-Site Scripting (XSS)	16 Mar 202104:34	–	veracode
UbuntuCve	CVE-2021-20279	15 Mar 202100:00	–	ubuntucve
CVE	CVE-2021-20279	15 Mar 202122:15	–	cve
CNVD	Moodle Cross-Site Scripting Vulnerability (CNVD-2021-28734)	19 Mar 202100:00	–	cnvd

Nvd

Node

moodle moodleRange3.5.0–3.5.17

moodle moodleRange3.8.0–3.8.8

moodle moodleRange3.9.0–3.9.5

moodle moodleRange3.10.0–3.10.2

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch34

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFH5DDMU5TZ3JT4Q52WMRAHACA5MHIMT/
moodle	www.moodle.org/mod/forum/discuss.php
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFSNJ7XHVTC52RSRX2GBQFF3VEEAY2MS/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Mar 2021 22:15Current

CVSS23.5

CVSS35.4

EPSS0.00733

CWE-79