The vulnerability of the Moodle learning management system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the Moodle learning management system’s sub-component “lib/javascript-static.js” exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject any desired web or HTML code using the IMG...

Moodle 'lib/javascript-static.js' Cross-Site Scripting Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A cross-site scripting vulnerability exists in the Moodle 'lib/javascript-static.js' script. The vulnerability can be exploited by remo...

UBUNTU-CVE-2015-2269

Multiple cross-site scripting XSS vulnerabilities in lib/javascript-static.js in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before 2.7.6, and 2.8.x before 2.8.4 allow remote authenticated users to inject arbitrary web script or HTML via a 1 alt or 2 title attribute in an IMG element...