Lucene search
Veracode Vulnerability DatabaseVERACODE:5119HistorySep 18, 2017 - 8:23 a.m.
Cross-site Scripting (XSS)
2017-09-1808:23:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
EPSS
0.001
Percentile
32.7%
Moodle is vulnerable to cross-site scripting (XSS) attacks. The application does not sanitize the $subject parameter in the contact form on the “non-respondents” page, allowing a malicious user to inject and execute arbitrary web script.
Related
cve
cve
CVE-2017-12156
2017-09-18 04:29:00
osv
osv
Moodle XSS Vulnerability
2022-05-17 00:51:04
CVE-2017-12156
2017-09-18 04:29:00
github
github
Moodle XSS Vulnerability
2022-05-17 00:51:04
prion
prion
Design/Logic Flaw
2017-09-18 04:29:00
ubuntucve
ubuntucve
CVE-2017-12156
2017-09-18 00:00:00
cvelist
cvelist
CVE-2017-12156
2017-09-18 04:00:00
nvd
nvd
CVE-2017-12156
2017-09-18 04:29:00
nessus
nessus
Fedora 25 : moodle (2017-c840f79347)
2017-10-03 00:00:00
Fedora 26 : moodle (2017-9a452dc893)
2017-09-29 00:00:00
openvas
openvas
Moodle 3.x Multiple Vulnerabilities (Sep 2017) - Linux
2018-05-15 00:00:00
Fedora Update for moodle FEDORA-2017-9a452dc893
2017-10-05 00:00:00
Moodle 3.x Multiple Vulnerabilities (Sep 2017) - Windows
2018-05-15 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: moodle-3.2.5-1.fc26
2017-09-28 20:01:47
[SECURITY] Fedora 25 Update: moodle-3.1.8-1.fc25
2017-09-30 10:19:49