4 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-35651
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remot...
Moodle 4.0.x < 4.0.2 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.15, 3.11.x prior to 3.11.8 or 4.0.x prior to 4.0.2. It is, therefore, affected by multiple vulnerabilities: - A code injection through an omitted execution parameter elading to Remote Code Execution RCE for sites running...
Fedora: Security Advisory for moodle (FEDORA-2022-7e7ce7df2e)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-35651
CVE-2022-35651 describes a vulnerability in Moodle where insufficient sanitization of user-supplied data in SCORM track details enables a stored XSS and blind SSRF. A remote attacker can lure a user to follow a crafted link and execute arbitrary HTML/script in the context of the vulnerable site, ...