CVE-2021-43558
22.11.2021, 16:15
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A URL parameter in the filetype site administrator tool required extra sanitizing to prevent a reflected XSS risk.
| Vendor | Product | Version |
|---|---|---|
| moodle | moodle | 𝑥 ≤ 3.8.8 |
| moodle | moodle | 3.9.0 ≤ 𝑥 < 3.9.11 |
| moodle | moodle | 3.10.0 ≤ 𝑥 < 3.10.8 |
| moodle | moodle | 3.11.0 ≤ 𝑥 < 3.11.4 |
| fedoraproject | extra_packages_for_enterprise_linux | 7.0 |
𝑥
= Vulnerable software versions
