Description

Multiple cross-site scripting (XSS) vulnerabilities in lib/weblib.php in Moodle 1.9.x before 1.9.12 allow remote attackers to inject arbitrary web script or HTML via vectors related to URL encoding.

Remediation

References

CVE-2011-4290

Related Vulnerabilities

PHP Double Free Vulnerability (CVE-2016-3132)

WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.21)

phpMyFAQ Weak Password Requirements Vulnerability (CVE-2022-3754)

WordPress Plugin Pluginception Multiple Cross-Site Scripting Vulnerabilities (1.2)

WordPress Plugin CrossSlide jQuery Multiple Vulnerabilities (2.0.5)

Severity

Medium

Classification

CVE-2011-4290 CWE-707

Tags

Missing Update Known Vulnerabilities