Cross-site scripting (XSS) vulnerability in help.php in Moodle 1.3.2 and 1.4 dev allows remote attackers to inject arbitrary web script or HTML via the file parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Moodle | Moodle | 1.1.1 | 1.1.1 |
Moodle | Moodle | 1.2.0 | 1.2.0 |
Moodle | Moodle | 1.2.1 | 1.2.1 |
Moodle | Moodle | 1.3.0 | 1.3.0 |
Moodle | Moodle | 1.3.1 | 1.3.1 |
Moodle | Moodle | 1.3.2 | 1.3.2 |