User: Password:
|
|
Subscribe / Log in / New account

moodle: cross-site scripting

Package(s):moodle CVE #(s):CVE-2010-4207 CVE-2010-4208 CVE-2010-4209
Created:November 12, 2010 Updated:November 17, 2010
Description: From the openSUSE advisory:

CVE-2010-4207: Cross-site scripting vulnerability in the Flash component infrastructure in YUI allows remote attackers to inject arbitrary web script or HTML via charts/assets/charts.swf.

CVE-2010-4208: Cross-site scripting vulnerability in the Flash component infrastructure in YUI allows remote attackers to inject arbitrary web script or HTML via uploader/assets/uploader.swf.

CVE-2010-4209: Cross-site scripting vulnerability in the Flash component infrastructure in YUI allows remote attackers to inject arbitrary web script or HTML via swfstore/swfstore.swf.

Alerts:
Mageia MGASA-2013-0117 bugzilla 2013-04-18
SUSE SUSE-SR:2010:021 mysql, dhcp, monotone, moodle, openssl 2010-11-16
Fedora FEDORA-2010-16845 moodle 2010-10-28
Fedora FEDORA-2010-16782 moodle 2010-10-28
Fedora FEDORA-2010-16764 moodle 2010-10-28
openSUSE openSUSE-SU-2010:0937-1 moodle 2010-11-12

(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds