Description
Multiple cross-site scripting (XSS) vulnerabilities in lib/weblib.php in Moodle 1.9.x before 1.9.12 allow remote attackers to inject arbitrary web script or HTML via vectors related to URL encoding.
Remediation
References
Related Vulnerabilities
Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-2739)
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-4153)
WordPress Plugin Tatsu Arbitrary File Upload (3.3.11)
MySQL CVE-2018-3067 Vulnerability (CVE-2018-3067)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-3545)