CVE-2024-34006 | Moodle Site Log config_log_created cross site scripting

Inserito da Angelo Barbosa | Mag 21, 2024 | CVE

A vulnerability classified as problematic was found in Moodle. This vulnerability affects unknown code of the component Site Log. The manipulation of the argument config_log_created leads to basic cross site scripting.

This vulnerability was named CVE-2024-34006. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-34006 | Moodle Site Log config_log_created cross site scripting

Post correlati

CVE-2024-42639 | H3C GR1100-P 100R009 /etc/shadow hard-coded password

CVE-2024-35660 | Jewel Theme Master Addons for Elementor Plugin up to 2.0.5.4.1 on WordPress authorization

CVE-2024-4452 | ElementsKit Pro Plugin up to 3.6.1 on WordPress cross site scripting

CVE-2024-6354 | Devolutions Remote Desktop Manager up to 2024.2.11 on Windows PAM Dashboard access control (DEVO-2024-0010)