mirror of https://github.com/bitnami/vulndb.git
55 lines
1.3 KiB
JSON
55 lines
1.3 KiB
JSON
{
|
|
"schema_version": "1.5.0",
|
|
"id": "BIT-moodle-2021-32244",
|
|
"details": "Cross Site Scripting (XSS) in Moodle 3.10.3 allows remote attackers to execute arbitrary web script or HTML via the \"Description\" field.",
|
|
"aliases": [
|
|
"CVE-2021-32244"
|
|
],
|
|
"affected": [
|
|
{
|
|
"package": {
|
|
"ecosystem": "Bitnami",
|
|
"name": "moodle",
|
|
"purl": "pkg:bitnami/moodle"
|
|
},
|
|
"severity": [
|
|
{
|
|
"type": "CVSS_V3",
|
|
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
|
|
}
|
|
],
|
|
"ranges": [
|
|
{
|
|
"type": "SEMVER",
|
|
"events": [
|
|
{
|
|
"introduced": "3.10.3"
|
|
},
|
|
{
|
|
"fixed": "3.10.4"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"database_specific": {
|
|
"severity": "Medium",
|
|
"cpes": [
|
|
"cpe:2.3:a:moodle:moodle:3.10.3:*:*:*:*:*:*:*",
|
|
"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*"
|
|
]
|
|
},
|
|
"references": [
|
|
{
|
|
"type": "WEB",
|
|
"url": "https://github.com/langkexiansheng/Images/blob/master/moodle_xss.gif"
|
|
},
|
|
{
|
|
"type": "WEB",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32244"
|
|
}
|
|
],
|
|
"published": "2024-03-06T11:10:29.416Z",
|
|
"modified": "2025-04-03T14:40:37.652Z"
|
|
} |