Description

filter/mediaplugin/filter.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allows remote authenticated users to cause a denial of service (CPU consumption or partial outage) via a crafted string that is matched against an improper regular expression.

Remediation

References

CVE-2015-0217

Related Vulnerabilities

Joomla! Core 3.x.x Cross-Site Request Forgery (3.2.0 - 3.4.5)

Squid NULL Pointer Dereference Vulnerability (CVE-2018-1172)

WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Cross-Site Scripting (16.24.47)

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-13395)

WordPress Plugin BrewMaster Multiple Cross-Site Scripting Vulnerabilities (1.0)

Severity

Medium

Classification

CVE-2015-0217

Tags

Missing Update Known Vulnerabilities