Description
In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.
Published: 2017-03-29
Score: 5.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-2407 In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.
Github GHSA Github GHSA GHSA-4m6v-x9fj-847j Moodle Cross-site Scripting in the Course summary filter of the Add a new course
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T15:56:36.497Z

Reserved: 2017-03-29T00:00:00.000Z

Link: CVE-2017-7298

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-03-29T05:59:00.193

Modified: 2026-06-17T01:24:05.380

Link: CVE-2017-7298

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses