Description
Multiple cross-site scripting (XSS) vulnerabilities in the course-tags functionality in tag/coursetags_more.php in Moodle 2.0.x before 2.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) sort or (2) show parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Widgets for WooCommerce Products on Elementor Cross-Site Scripting (1.0.7)
Oracle Database Server CVE-2014-6452 Vulnerability (CVE-2014-6452)
WordPress Plugin WP Download Codes Cross-Site Scripting (2.5.1)
WordPress Plugin Advanced Contact form 7 DB SQL Injection (1.6.1)
WordPress Plugin WP SlackSync Information Disclosure (1.8.5)