Total vulnerabilities in the database
Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer.php in Moodle 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via an external badge.
Software | From | Fixed in |
---|---|---|
moodle / moodle | 2.5.1 | 2.5.1.x |
moodle / moodle | 2.5.3 | 2.5.3.x |
moodle / moodle | 2.5.5 | 2.5.5.x |
moodle / moodle | 2.6.1 | 2.6.1.x |
moodle / moodle | 2.5.2 | 2.5.2.x |
moodle / moodle | 2.5.6 | 2.5.6.x |
moodle / moodle | 2.6.2 | 2.6.2.x |
moodle / moodle | 2.7.0 | 2.7.0.x |
moodle / moodle | 2.5.4 | 2.5.4.x |
moodle / moodle | 2.6.3 | 2.6.3.x |
moodle / moodle | 2.5.0 | 2.5.0.x |
moodle / moodle | 2.6.0 | 2.6.0.x |