Description

Cross-site scripting (XSS) vulnerability in view.php in Moodle 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Remediation

References

CVE-2004-1424

Related Vulnerabilities

WordPress Plugin cformsII Multiple Cross-Site Scripting Vulnerabilities (14.13.2)

WordPress 5.1.x Multiple Vulnerabilities (5.1 - 5.1.14)

Oracle Database Server Other Vulnerability (CVE-1999-0784)

WordPress Plugin Arigato Autoresponder and Newsletter Multiple Unspecified Vulnerabilities (2.4.2)

WordPress Plugin WP Membership Multiple Vulnerabilities (1.2.3)

Severity

Medium

Classification

CVE-2004-1424 CWE-707

Tags

Missing Update Known Vulnerabilities