CVE-2024-34000 | moodle Lesson Overview Report user ID cross site scripting

Posted by Angelo Barbosa | May 21, 2024 | CVE

A vulnerability has been found in moodle and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Lesson Overview Report. The manipulation of the argument user ID leads to cross site scripting.

This vulnerability is known as CVE-2024-34000. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-34000 | moodle Lesson Overview Report user ID cross site scripting

Related Posts

CVE-2023-36650 | ProLion CryptoSpike 3.0.15P2 Update Package integrity check

CVE-2024-42412 | ELECOM WAB-I1750-PS/WAB-S1167-PS up to 1.5.10 menu.cgi cross site scripting

CVE-2024-44102 | Siemens PP TeleControl Server Basic 1000 to 5000 up to 3.1.2.0 deserialization (ssa-454789)

CVE-2024-34556 | UkrSolution Barcode Scanner with Inventory & Order Manager Plugin information disclosure