Description
Cross-site scripting (XSS) vulnerability in group/overview.php in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 allows remote authenticated users to inject arbitrary web script or HTML via a modified grouping description.
Remediation
References
Related Vulnerabilities
WordPress Plugin Gravity Forms Advanced File Uploader Unspecified Vulnerability (1.18)
WordPress Plugin WP Portfolio Gallery Cross-Site Scripting (1.0.0)
WordPress Plugin PropertyHive Remote Code Execution (1.4.25)
Microsoft SQL Server CVE-2024-0056 Vulnerability (CVE-2024-0056)
WordPress Plugin SendPress Newsletters Multiple Vulnerabilities (1.1.7.21)