Description A flaw was found in moodle. A local file may include risks when restoring block backups. Remediation References CVE-2024-43440 Related Vulnerabilities Coppermine Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4612) WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (4.6.12) MySQL CVE-2024-21056 Vulnerability (CVE-2024-21056) CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41165) WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38000) Severity High Classification CVE-2024-43440 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities