Vulnerabilities > CVE-2024-43439 - Unspecified vulnerability in Moodle

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
moodle
NVD
Published: 2024-11-11
Updated: 2025-04-23

Summary

A flaw was found in moodle. H5P error messages require additional sanitizing to prevent a reflected cross-site scripting (XSS) risk.

Vulnerable Configurations

Part Description Count
Application
Moodle
488

References