Lucene search
Ubuntu.comUB:CVE-2010-1618HistoryApr 29, 2010 - 12:00 a.m.
CVE-2010-1618
2010-04-2900:00:00
ubuntu.com
ubuntu.com
8
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.1%
Cross-site scripting (XSS) vulnerability in the phpCAS client library
before 1.1.0, as used in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8,
allows remote attackers to inject arbitrary web script or HTML via a
crafted URL, which is not properly handled in an error message.
Notes
| Author | Note |
|---|---|
| kees | MSA-10-0002 http://tracker.moodle.org/browse/MDL-21802 |
Related
cvelist
cvelist
CVE-2010-1618
2010-04-29 21:00:00
prion
prion
Cross site scripting
2010-04-29 21:30:00
gitlab
gitlab
cve
cve
CVE-2010-1618
2010-04-29 21:30:00
osv
osv
phpCAS client library and Moodle Cross-site Scripting vulnerability
2022-05-13 01:13:09
moodle - several vulnerabilities
2010-09-29 00:00:00
github
github
phpCAS client library and Moodle Cross-site Scripting vulnerability
2022-05-13 01:13:09
openvas
openvas
Moodle Multiple Vulnerabilities
2010-05-19 00:00:00
Moodle Multiple Vulnerabilities
2010-05-19 00:00:00
Moodle 1.8.x < 1.8.12, 1.9.x < 1.9.8 Multiple Vulnerabilities
2010-04-12 00:00:00
nessus
nessus
openSUSE Security Update : moodle (openSUSE-SU-2010:0212-1)
2010-05-05 00:00:00
openSUSE Security Update : moodle (openSUSE-SU-2010:0212-1)
2010-05-05 00:00:00
Debian DSA-2115-1 : moodle - several vulnerabilities
2010-10-06 00:00:00
debian
debian
[SECURITY] [DSA-2115-1] New moodle packages fix several vulnerabilities
2010-09-29 21:05:08
[SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
2010-10-11 05:18:18
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.1%
Related for UB:CVE-2010-1618