Cross-site scripting (XSS) vulnerabilities in Moodle CMS on or before 3.1.2 allow remote attackers to inject arbitrary web script or HTML via the s_additionalhtmlhead, s_additionalhtmltopofbody, and s_additionalhtmlfooter parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-11-04T10:00:00
Updated: 2024-08-06T02:42:11.283Z
Reserved: 2016-11-04T00:00:00
Link: CVE-2016-9188
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2016-11-04T10:59:08.647
Modified: 2016-11-29T18:29:30.013
Link: CVE-2016-9188
Redhat
No data.