Description

Cross-site scripting (XSS) vulnerability in post.php in Moodle before 1.3 allows remote attackers to inject arbitrary web script or HTML via the reply parameter.

Remediation

References

CVE-2004-1711

Related Vulnerabilities

WordPress Plugin Theme My Login Local File Inclusion (6.3.9)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (7.1.12)

Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-2582)

Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-32778)

Oracle HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-0197)

Severity

Medium

Classification

CVE-2004-1711

Tags

Missing Update Known Vulnerabilities