6 matches found
Cross-site Scripting (XSS)
moodle/moodle is vulnerable to Cross-site Scripting XSS. The vulnerability is due to insufficient escaping of calendar event titles, leading to a stored XSS risk in the event deletion prompt...
UBUNTU-CVE-2024-38274
Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt...
CVE-2024-38274
Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt...
CVE-2024-38274 moodle: stored XSS via calendar's event title when deleting the event
Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt...
CVE-2024-38274
Summary (CVE-2024-38274): Moodle is affected by a stored XSS risk due to insufficient escaping of calendar event titles in the event deletion prompt. This is documented in the connected OSV entry BIT-MOODLE-2024-38274 as the vulnerability description. The provided connected documents do not inclu...
PT-2024-27913 · Alt Linux · Alt Linux
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to insufficient escaping of calendar event titles, which resulted in a stored XSS risk. This risk is specifically present in the...