CVE-2024-33998 | Moodle Participants Page User Name cross site scripting

Posted by Angelo Barbosa | May 21, 2024 | CVE

A vulnerability was found in Moodle and classified as problematic. Affected by this issue is some unknown functionality of the component Participants Page. The manipulation of the argument User Name leads to cross site scripting.

This vulnerability is handled as CVE-2024-33998. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-33998 | Moodle Participants Page User Name cross site scripting

Related Posts

CVE-2023-34055 | VMware Spring Boot up to 2.7.17/3.0.12/3.1.5 HTTP Request denial of service

CVE-2024-43045 | Jenkins prior LTS 2.452.3/2.470 My Views permission

CVE-2024-41687 | SyroTech SY-GPON-1110-WDONT 3.1.02-231102 HTTP Session cleartext transmission (CIVN-2024-0225)

CVE-2024-6035 | gaizhenbiao chuanhuchatgpt up to 20240410 cross site scripting