MidnightBSD

Advisories for nimish_pachapurkar

CVE-2011-4280 MEDIUM

Cross-site scripting (XSS) vulnerability in the Spike PHPCoverage (aka spikephpcoverage) library, as used in Moodle 2.0.x before 2.0.2 and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
nimish_pachapurkar spike_phpcoverage *
moodle moodle 2.0.1
moodle moodle 2.0.0