CVE-2011-4306

Cross-site scripting XSS vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data...

CVE-2011-4306

Moodle 1.9.x before 1.9.14 is affected by a Cross-site Scripting (XSS) vulnerability in course/editsection.html that allows remote authenticated users to inject arbitrary script/HTML via crafted data. Root cause: insufficient input sanitization in that page. Impact: potential defacement, social e...