Description
Multiple cross-site scripting (XSS) vulnerabilities in blog/index.php in Moodle before 1.8.13 and 1.9.x before 1.9.9 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters.
Remediation
References
Related Vulnerabilities
Python Out-of-bounds Read Vulnerability (CVE-2019-15903)
WordPress Plugin Dropbox Folder Share Server-Side Request Forgery (1.9.7)
WordPress Plugin Groups Multiple Cross-Site Scripting Vulnerabilities (1.8.0)
MySQL CVE-2019-2592 Vulnerability (CVE-2019-2592)
MySQL Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2005-0709)