Description
A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting (XSS) risk from malicious backup files.
Remediation
References
Related Vulnerabilities
Zope Web Application Server Other Vulnerability (CVE-2005-3323)
MySQL CVE-2022-21594 Vulnerability (CVE-2022-21594)
PHP Out-of-bounds Read Vulnerability (CVE-2019-11041)
WordPress Plugin FCChat Widget 'path' Parameter Cross-Site Scripting (2.1.7)
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-27624)