7 matches found
openSUSE Security Update : moodle (moodle-127)
Moodle was prone to a Cross-Site scripting flaw which could potentially be exploited to compromise arbitrary accounts CVE-2008-3326. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update moodle-127...
Debian Security Advisory DSA 1691-1 (moodle)
The remote host is missing an update to moodle announced via advisory DSA 1691-1. OpenVAS Vulnerability Test $Id: deb16911.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1691-1 moodle Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1691-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 22, 2008 http://www.debian.org/security/faq -...
openSUSE 10 Security Update : moodle (moodle-5488)
Moodle was prone to a Cross-Site scripting flaw which could potentially be exploited to compromise arbitrary accounts CVE-2008-3326. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update moodle-5488...
CVE-2008-3326
Cross-site scripting XSS vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter blog entry title...
CVE-2008-3326
Cross-site scripting XSS vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter blog entry title...
CVE-2008-3326
CVE-2008-3326 is a cross-site scripting flaw in Moodle’s blog/edit.php that allows injecting script/HTML via the etitle entry title. Affected: Moodle 1.6.x up to 1.6.7 and Moodle 1.7.x up to 1.7.5. Root cause: XSS in blog entry title handling. Impact: remote attacker can execute script in the vic...