First published: Tue May 10 2022(Updated: )
A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk.
Credit: patrick@puiterwijk.org patrick@puiterwijk.org
Affected Software | Affected Version | How to fix |
---|---|---|
composer/moodle/moodle | >=3.9<3.9.14 | 3.9.14 |
composer/moodle/moodle | >=3.10<3.10.11 | 3.10.11 |
composer/moodle/moodle | >=3.11<3.11.7 | 3.11.7 |
composer/moodle/moodle | >=4.0<4.0.1 | 4.0.1 |
Moodle Moodle | >=3.9<3.9.14 | |
Moodle Moodle | >=3.10<3.10.11 | |
Moodle Moodle | >=3.11<3.11.7 | |
Moodle Moodle | =4.0.0 | |
Redhat Enterprise Linux | =8.0 | |
Fedoraproject Fedora | =34 | |
Fedoraproject Fedora | =35 | |
Fedoraproject Fedora | =36 | |
redhat/moodle | <4.0.1 | 4.0.1 |
redhat/moodle | <3.11.7 | 3.11.7 |
redhat/moodle | <3.10.11 | 3.10.11 |
redhat/moodle | <3.9.14 | 3.9.14 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.