Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer.php in Moodle 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via an external badge.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-07-29T10:00:00

Updated: 2024-08-06T10:50:16.890Z

Reserved: 2014-05-14T00:00:00

Link: CVE-2014-3547

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2014-07-29T11:10:32.277

Modified: 2020-12-01T14:54:45.183

Link: CVE-2014-3547

cve-icon Redhat

No data.