Description

Cross-site scripting (XSS) vulnerability in index.php in Moodle 1.7.1 allows remote attackers to inject arbitrary web script or HTML via a style expression in the search parameter, a different vulnerability than CVE-2004-1424.

Remediation

References

CVE-2007-3555

Related Vulnerabilities

WordPress Plugin Polo Video Gallery-Best wordpress video gallery Cross-Site Scripting (1.2)

WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10673)

WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts Cross-Site Scripting (1.2.1)

WordPress Plugin Royal Elementor Addons and Templates Arbitrary File Upload (1.3.78)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1611)

Severity

Medium

Classification

CVE-2007-3555

Tags

Missing Update Known Vulnerabilities