CVE-2024-38274 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 Calendar Event cross site scripting

Posted by Angelo Barbosa | Jun 19, 2024 | CVE

A vulnerability classified as problematic has been found in Moodle up to 4.1.10/4.2.7/4.3.4/4.4. This affects an unknown part of the component Calendar Event Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-38274. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-38274 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 Calendar Event cross site scripting

Related Posts

CVE-2023-52535 | Unisoc SC7731E/SC9832E/SC9863A/T310/T610/T618 vsp Driver denial of service

CVE-2024-6358 | OpenText ArcSight Intelligence up to 6.4.12 authorization

CVE-2023-43628 | GPSd 3.25.1~dev NTRIP Stream Parser integer underflow (TALOS-2023-1860)

CVE-2021-47492 | Linux Kernel up to 5.10.76/5.14.15 thp collapse_file denial of service (69a7fa5cb0de/5e669d8ab30a/74c42e1baacf)