Description

Cross-site scripting (XSS) vulnerability in repository/lib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 allows remote authenticated administrators to inject arbitrary web script or HTML by renaming a repository.

Remediation

References

CVE-2012-3393

Related Vulnerabilities

WordPress Plugin Google XML Sitemap for Videos Cross-Site Request Forgery (2.6.1)

Grafana CVE-2023-1387 Vulnerability (CVE-2023-1387)

WordPress Plugin Mz-jajak 'id' Parameter SQL Injection (2.1)

Jolokia Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0168)

IBM WebSEAL Other Vulnerability (CVE-2019-4552)

Severity

Low

Classification

CVE-2012-3393 CWE-707

Tags

Missing Update Known Vulnerabilities