3 matches found
Moodle LMS Jmol Plugin <= 6.1 - Cross-Site Scripting
A reflected cross-site scripting XSS vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the data parameter in jsmol.php. The application fails to properly sanitize user input before embedding it into the HTTP response, allowing an attacker to execute arbitrary JavaScript...
CVE-2025-34032
creationtimestamp| type| source ---|---|--- 2025-06-24 02:47:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19295 2025-06-24 04:08:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsd7y6vtzn25 2025-06-25 09:14:06+00:00| confirmed|...
VulnCheck KEV: CVE-2025-34032
A reflected cross-site scripting XSS vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the data parameter in jsmol.php. The application fails to properly sanitize user input before embedding it into the HTTP response, allowing an attacker to execute arbitrary...