Description
Cross-site scripting (XSS) vulnerability in the tag autocomplete functionality in Moodle 1.9.x before 1.9.11 and 2.0.x before 2.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21249 Vulnerability (CVE-2022-21249)
WordPress Plugin MW WP Form Cross-Site Scripting (1.7.1)
WordPress Plugin PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload (1.0)
Oracle Database Server Other Vulnerability (CVE-2005-1197)
WordPress Plugin MW Font Changer Cross-Site Scripting (4.2.5)