Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbBartek NowotarskiEDB-ID:24071
HistoryApr 30, 2004 - 12:00 a.m.

Moodle 1.1/1.2 - Cross-Site Scripting

2004-04-3000:00:00
Bartek Nowotarski
www.exploit-db.com
14

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/10251/info

It has been reported that Moodle is susceptible to a cross-site scripting vulnerability in the 'help.php' script. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamic web content.

This issue may allow for theft of cookie-based authentication credentials. Other attacks are also possible.

http://www.example.com/help.php?text={XSS}

Related

openvas 2
cve 1
cvelist 1
nvd 1
openvas
openvas
Moodle XSS
2005-11-03 00:00:00
Moodle XSS
2005-11-03 00:00:00
cve
cve
CVE-2004-1978
2005-05-10 04:00:00
cvelist
cvelist
CVE-2004-1978
2005-05-10 04:00:00
nvd
nvd
CVE-2004-1978
2004-04-30 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:24071
openvas2cve1cvelist1nvd1