Description

Cross-site scripting (XSS) vulnerability in help.php in Moodle before 1.3 allows remote attackers to inject arbitrary HTML and web script via the text parameter.

Remediation

References

CVE-2004-1978

Related Vulnerabilities

MySQL CVE-2023-22097 Vulnerability (CVE-2023-22097)

WordPress Plugin Events Manager Cross-Site Request Forgery (5.9.8.1)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1460)

Oracle Application Server Other Vulnerability (CVE-2005-3445)

WordPress Plugin KittyCatfish Ads by Missilesilo SQL Injection (2.2)

Severity

Medium

Classification

CVE-2004-1978

Tags

Missing Update Known Vulnerabilities