Linux Distros Unpatched Vulnerability : CVE-2019-18210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Persistent XSS in /course/modedit.php of Moodle through 3.7.2 allows authenticated users Teacher and above to inject JavaScript into the session of another user...

Linux Distros Unpatched Vulnerability : CVE-2017-18210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocati...

CVE-2019-18210

Persistent XSS in /course/modedit.php of Moodle through 3.7.2 allows authenticated users Teacher and above to inject JavaScript into the session of another user e.g., enrolled student or site administrator via the introeditortext parameter. NOTE: the discoverer and vendor disagree on whether Mood...

CVE-2019-18210

CVE-2019-18210 describes a persistent XSS in Moodle via the /course/modedit.php interface, exploitable through the introeditor[text] parameter. The issue affects Moodle up to version 3.7.2 (and earlier, per entries) where an authenticated user with Teacher role or higher can inject JavaScript tha...

CVE-2018-18210

CVE-2018-18210 shows a Cross-Site Scripting (XSS) vulnerability in DiliCMS 2.4.0 exploited via the attachment_url parameter of admin/index.php/setting/site?tab=site_attachment. Multiple databases describe XSS that can be used to inject scripts and potentially access sensitive information. Exploit...