Description

Cross-site scripting (XSS) vulnerability in mod/forum/discuss.php in Moodle 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the navtail parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Remediation

References

CVE-2006-6625

Related Vulnerabilities

WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Cross-Site Request Forgery (4.0.9)

Microsoft IIS5 NTLM and Basic authentication bypass

WordPress Plugin Gutenberg Forms-WordPress Form Builder Arbitrary File Upload (2.2.9)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0864)

Jboss EAP Improper Handling of Exceptional Conditions Vulnerability (CVE-2018-8039)

Severity

Medium

Classification

CVE-2006-6625

Tags

Missing Update Known Vulnerabilities