Cross-Site Scripting Vulnerability in Moodle by Moodle
CVE-2017-2644

6.1MEDIUM

Key Information:

Vendor: Moodle
Status: Moodle 3.x
Vendor: CVE Published:; 26 March 2017

Summary

In Moodle 3.x, a Cross-Site Scripting (XSS) vulnerability can be exploited through specific user input related to evidence of prior learning. This flaw allows attackers to inject malicious scripts, potentially compromising user data and system integrity. It is crucial for users and administrators to implement necessary precautions and patches to secure their Moodle installations against such potential exploits.