Multiple Cross-Site Scripting (XSS) Vulnerabilities in Moodle 2.0.x before 2.0.2

Multiple Cross-Site Scripting (XSS) Vulnerabilities in Moodle 2.0.x before 2.0.2

CVE-2011-4282 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the course-tags functionality in tag/coursetags_more.php in Moodle 2.0.x before 2.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) sort or (2) show parameter.

Learn more about our Web App Pen Testing.