CVE-2011-4591 in Moodleinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in the print_object function in lib/datalib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3, when a developer debugging script is enabled, allows remote attackers to inject arbitrary web script or HTML via vectors involving object states.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

29/11/2011

Divulgation

20/07/2012

Modérer

accepté

Entrée

VDB-61354

CPE

prêt

EPSS

0.01832

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!