Description
Cross-site scripting (XSS) vulnerability in install.php for Moodle 1.8.3, and possibly other versions before 1.8.4, allows remote attackers to inject arbitrary web script or HTML via the dbname parameter. NOTE: this issue only exists until the installation is complete.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ketchup Restaurant Reservations Multiple Vulnerabilities (1.0.0)
WordPress Plugin Easy Digital Downloads QR Code Cross-Site Scripting (1.1.0)
WordPress Plugin W3 Total Cache Arbitrary File Disclosure (0.9.3)
Internet Information Services Other Vulnerability (CVE-2002-0364)
WordPress Plugin YITH WooCommerce Ajax Search Unspecified Vulnerability (1.2.7)