Description
Cross-site scripting (XSS) vulnerability in the phpCAS client library before 1.1.0, as used in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled in an error message.
Remediation
References
Related Vulnerabilities
Nginx buffer underflow vulnerability
Oracle JRE CVE-2012-0497 Vulnerability (CVE-2012-0497)
WordPress Plugin GraceMedia Media Player Local File Inclusion (1.0)
WordPress Plugin Twitter Button by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (2.36)
Internet Information Services Other Vulnerability (CVE-2002-1745)