Description
Cross-site scripting (XSS) vulnerability in help.php in Moodle 1.3.2 and 1.4 dev allows remote attackers to inject arbitrary web script or HTML via the file parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Statistics SQL Injection (13.2.8)
WordPress Plugin wp-easybooking Cross-Site Scripting (1.0.3)
SharePoint CVE-2020-17015 Vulnerability (CVE-2020-17015)
WordPress Plugin WooCommerce-Store Toolkit Privilege Escalation (1.5.6)
Dolphin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3728)