3 matches found
GHSA-9FMW-M4QX-6CQ8 Moodle cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in the externalformattext function in lib/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML into an external application via a...
Moodle cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in the externalformattext function in lib/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML into an external application via a...
Cross-site Scripting (XSS)
Moodle is vulnerable to cross-site scripting XSS attacks. Authenticated attackers can inject web script and HTML into the application through the externalformattext function in lib/externallib.php...