Vulnerabilities > CVE-2004-1978 - Unspecified vulnerability in Moodle 1.1.1/1.2.0/1.2.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN moodle
exploit available
Summary
Cross-site scripting (XSS) vulnerability in help.php in Moodle before 1.3 allows remote attackers to inject arbitrary HTML and web script via the text parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | Moodle 1.1/1.2 Cross Site Scripting Vulnerability. CVE-2004-1978. Webapps exploit for php platform |
| id | EDB-ID:24071 |
| last seen | 2016-02-02 |
| modified | 2004-04-30 |
| published | 2004-04-30 |
| reporter | Bartek Nowotarski |
| source | https://www.exploit-db.com/download/24071/ |
| title | Moodle 1.1/1.2 - Cross-Site Scripting Vulnerability |
References
- http://marc.info/?l=bugtraq&m=108335043825605&w=2
- http://marc.info/?l=bugtraq&m=108335043825605&w=2
- http://secunia.com/advisories/11535
- http://secunia.com/advisories/11535
- http://securitytracker.com/id?1010008
- http://securitytracker.com/id?1010008
- http://www.osvdb.org/5747
- http://www.osvdb.org/5747
- http://www.securityfocus.com/bid/10251
- http://www.securityfocus.com/bid/10251
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16023
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16023