Vulnerability Database
Blog
FAQ
Docs
CVE-2017-2645
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-2645
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-2645.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-2645
Aliases
GHSA-9cg4-4f87-jhm3
Published
2017-03-26T18:59:00Z
Modified
2024-10-12T02:51:01.595927Z
Severity
6.1 (Medium)
CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVSS Calculator
Summary
[none]
Details
In Moodle 3.x, XSS can occur via attachments to evidence of prior learning.
References
http://www.securityfocus.com/bid/96982
https://moodle.org/mod/forum/discuss.php?d=349422
http://www.securitytracker.com/id/1038174
Affected packages
Git
/
github.com/moodle/moodle
Affected ranges
Type
GIT
Repo
https://github.com/moodle/moodle
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Last affected
07f6358b03027633f1c8e8b14cc03d771f4e7462
Last affected
0fbe41f4cda13cb2a205aaa4eaeeec45e595e3b6
Last affected
1b00e27281b459d27bbd9dc70099a292709ffb54
Last affected
258d07d37ef719d0f1842f2a74113fd64e1ead40
Last affected
268abfacc54c4cbf9722c1502569b311c7caefff
Last affected
30c8ed5c16547cffcd1345c3a288f63263d40fdc
Last affected
33892edf189f5e2c9041c67119e1fd5fbe540635
Last affected
3eabedbb9284e5b39500220e4f7b1e29420ebf2b
Last affected
47806ea17e5e9728927b354e474e48d14ea8f4f4
Last affected
a0352aa95e292813d787aa8ea599ddc739d6c991
Last affected
b182239f21c38ea57cddb41b0c03ef3eb02709f8
Last affected
cd4a6b8b0bca159d3abb1468794ed5a074c5b701
Last affected
de572fbf032777e89196b42148e44f83e0fd4d78
Last affected
edab0782a354995c60ff2c7874031addb155a49c
Last affected
f851201f58662264ad7864dbbf8e2240ce7bf84a
Last affected
fc1ef59fbed351ec3de68be4eeec0f3a6cbfe210
Affected versions
v1.*
v1.0.0
v1.0.1
v1.0.2
v1.0.3
v1.0.4
v1.0.5
v1.0.6
v1.0.7
v1.0.8
v1.0.9
v1.1.0
v1.1.1
v1.2.0
v1.2.1
v1.3.0
v2.*
v2.0.0
v2.0.0-rc1
v2.0.0-rc2
v2.0.1
v2.0.2
v2.1.0
v2.2.0
v2.2.0-beta
v2.2.0-rc1
v2.3.0
v2.3.0-beta
v2.3.0-rc1
v2.4.0
v2.4.0-beta
v2.4.0-rc1
v2.5.0
v2.5.0-beta
v2.5.0-rc1
v2.6.0
v2.6.0-beta
v2.6.0-rc1
v2.7.0
v2.7.0-beta
v2.7.0-rc1
v2.7.0-rc2
v2.8.0
v2.8.0-beta
v2.8.0-rc1
v2.8.0-rc2
v2.9.0
v2.9.0-beta
v2.9.0-rc1
v2.9.0-rc2
v3.*
v3.0.0
v3.0.0-beta
v3.0.0-rc1
v3.0.0-rc2
v3.0.0-rc3
v3.0.0-rc4
v3.1.0
v3.1.0-beta
v3.1.0-rc1
v3.1.0-rc2
v3.2.0
v3.2.0-beta
v3.2.0-rc1
v3.2.0-rc2
v3.2.0-rc3
v3.2.0-rc4
v3.2.0-rc5
v3.2.1
CVE-2017-2645 - OSV