Lucene search
Veracode Vulnerability DatabaseVERACODE:4793HistoryJul 29, 2017 - 4:28 p.m.
Cross-site Scripting (XSS)
2017-07-2916:28:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
EPSS
0.001
Percentile
46.4%
Moodle is vulnerable to cross-site scripting (XSS) attacks. These attacks can be performed if a web service with the file upload function is available. Attackers can perform XSS attacks through the upload of a profile picture.
Related
ubuntucve
ubuntucve
CVE-2014-7835
2014-11-24 00:00:00
nvd
nvd
CVE-2014-7835
2014-11-24 11:59:05
osv
osv
Moodle allows attackers to upload files containing JavaScript
2022-05-13 01:12:43
prion
prion
Cross site scripting
2014-11-24 11:59:00
cvelist
cvelist
CVE-2014-7835
2014-11-24 11:00:00
github
github
Moodle allows attackers to upload files containing JavaScript
2022-05-13 01:12:43
cve
cve
CVE-2014-7835
2014-11-24 11:59:05
nessus
nessus
Moodle 2.6.x < 2.6.6 / 2.7.x < 2.7.3 Multiple Vulnerabilities
2015-04-20 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0483)
2022-01-28 00:00:00
mageia
mageia
Updated moodle package fixes security vulnerabilities
2014-11-22 13:54:50