1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
Candidate: CVE-2011-4280
PublicDate: 2012-07-16
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4280
Description:
Cross-site scripting (XSS) vulnerability in the Spike PHPCoverage (aka
spikephpcoverage) library, as used in Moodle 2.0.x before 2.0.2 and other
products, allows remote attackers to inject arbitrary web script or HTML
via unspecified vectors.
Ubuntu-Description:
Notes:
jdstrand> moodle 2.0 only
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_moodle:
upstream_moodle: needs-triage
hardy_moodle: ignored (reached end-of-life)
lucid_moodle: not-affected
maverick_moodle: not-affected
natty_moodle: not-affected
oneiric_moodle: not-affected
devel_moodle: not-affected (1.9.9.dfsg2-4)
|