Description
Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2023-1791 | Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14. |
Github GHSA |
GHSA-fwfj-8p36-rc64 | Moodle vulnerable to Cross-site Scripting |
References
History
Fri, 27 Feb 2026 02:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: fedora
Published:
Updated: 2024-08-02T16:23:59.010Z
Reserved: 2023-06-13T00:00:00.000Z
Link: CVE-2023-35131
Updated: 2024-08-02T16:23:59.010Z
Status : Modified
Published: 2023-06-22T21:15:09.413
Modified: 2026-06-17T06:04:27.233
Link: CVE-2023-35131
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
EUVD
Github GHSA