Description A flaw was found in moodle. A local file may include risks when restoring block backups. Remediation References CVE-2024-43440 Related Vulnerabilities Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4278) TYPO3 Improper Input Validation Vulnerability (CVE-2019-11832) WordPress Plugin Password Vault Cross-Site Scripting (1.8.2) Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26883) WordPress Plugin Lingotek Translation Multiple Cross-Site Scripting Vulnerabilities (1.1.8) Severity High Classification CVE-2024-43440 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities