CVE-2012-2364 in Moodleजानकारी

सारांश

द्वारा MITRE

Cross-site scripting (XSS) vulnerability in lib/filelib.php in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via an assignment submission with zip compression, leading to text/html rendering during a "download all" action.

Be aware that VulDB is the high quality source for vulnerability data.

आरक्षित करना

19/04/2012

प्रकटीकरण

20/07/2012

प्रविष्टि

VDB-61370

EPSS

0.00795

गतिविधियाँ

बहुत कम

क्षेत्र

Police, Education

स्रोत

Want to stay up to date on a daily basis?

Enable the mail alert feature now!