Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2022/07/26 12:0 a.m.44 views

Moodle LTI module reflected XSS risk

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.1CVSS6AI score0.03747EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2022/07/25 4:15 p.m.32 views

CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.1CVSS0.03747EPSS
Exploits0References5
OSV
OSV
added 2022/07/25 4:15 p.m.26 views

CVE-2022-35651

A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in contex...

6.1CVSS6.1AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/07/25 4:15 p.m.41 views

CVE-2022-35651

A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in contex...

6.1CVSS6.4AI score0.00879EPSS
Exploits0References6
Rows per page
Query Builder