PKSA-gstb-chkw-qtcd Security Advisory
-
[MEDIUM] Moodle stored XSS via calendar's event title when deleting the event
PKSA-gstb-chkw-qtcd CVE-2024-38274 GHSA-p5cg-6rfr-6mx8
Affected package: moodle/moodle
Affected version: <4.1.11|>=4.2.0-beta,<4.2.8|>=4.3.0-beta,<4.3.5|>=4.4.0-beta,<4.4.1
Reported by:
GitHub