Description

Cross-site scripting (XSS) vulnerability in post.php in Moodle before 1.3 allows remote attackers to inject arbitrary web script or HTML via the reply parameter.

Remediation

References

CVE-2004-1711

Related Vulnerabilities

WordPress Plugin Business Directory-Easy Listing Directories for WordPress Multiple Vulnerabilities (5.11.1)

WordPress Plugin Wordspew 'id' Parameter SQL Injection (1.16)

WordPress Plugin Essential Content Types Security Bypass (1.8.6)

WordPress Plugin Sticky Ad Bar Cross-Site Scripting (1.3.1)

WordPress Incorrect Authorization Vulnerability (CVE-2017-6816)

Severity

Medium

Classification

CVE-2004-1711

Tags

Missing Update Known Vulnerabilities