CVE-2010-2228 in Moodle
Resumen (Inglés)
Cross-site scripting (XSS) vulnerability in the MNET access-control interface in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to inject arbitrary web script or HTML via vectors involving extended characters in a username.
Reservar
2010-06-09
Divulgación
2010-06-28
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 53836 | Moodle secuencias de comandos en sitios cruzados | 79 | Prueba de concepto | Arreglo oficial | CVE-2010-2228 |