Cross site scripting in moodle
Moderate severity
GitHub Reviewed
Published
Mar 21, 2024
to the GitHub Advisory Database
•
Updated Aug 15, 2024
Description
Published by the National Vulnerability Database
Mar 21, 2024
Published to the GitHub Advisory Database
Mar 21, 2024
Reviewed
Aug 15, 2024
Last updated
Aug 15, 2024
A Cross-Site Scripting (XSS) vulnerability exists in the way MOODLE 3.10.9 handles user input within the "GET /?lang=" URL parameter.
References