moodle/moodle is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to insufficient sanitizing of ID numbers displayed in the report, which results in stored XSS.
CPE | Name | Operator | Version |
---|---|---|---|
moodle/moodle | le | v4.3.3 | |
moodle/moodle | le | v4.1.9 | |
moodle/moodle | le | v4.2.6 | |
moodle/moodle | le | v4.3.3 | |
moodle/moodle | le | v4.1.9 | |
moodle/moodle | le | v4.2.6 |