Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2015-3274

Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an external_format_text call in a web service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2015-3274
  • Moodle » Moodle » Version: 2.6.0
    cpe:2.3:a:moodle:moodle:2.6.0
  • Moodle » Moodle » Version: 2.6.1
    cpe:2.3:a:moodle:moodle:2.6.1
  • Moodle » Moodle » Version: 2.6.10
    cpe:2.3:a:moodle:moodle:2.6.10
  • Moodle » Moodle » Version: 2.6.2
    cpe:2.3:a:moodle:moodle:2.6.2
  • Moodle » Moodle » Version: 2.6.3
    cpe:2.3:a:moodle:moodle:2.6.3
  • Moodle » Moodle » Version: 2.6.4
    cpe:2.3:a:moodle:moodle:2.6.4
  • Moodle » Moodle » Version: 2.6.5
    cpe:2.3:a:moodle:moodle:2.6.5
  • Moodle » Moodle » Version: 2.6.6
    cpe:2.3:a:moodle:moodle:2.6.6
  • Moodle » Moodle » Version: 2.6.7
    cpe:2.3:a:moodle:moodle:2.6.7
  • Moodle » Moodle » Version: 2.6.8
    cpe:2.3:a:moodle:moodle:2.6.8
  • Moodle » Moodle » Version: 2.6.9
    cpe:2.3:a:moodle:moodle:2.6.9
  • Moodle » Moodle » Version: 2.7.0
    cpe:2.3:a:moodle:moodle:2.7.0
  • Moodle » Moodle » Version: 2.7.1
    cpe:2.3:a:moodle:moodle:2.7.1
  • Moodle » Moodle » Version: 2.7.2
    cpe:2.3:a:moodle:moodle:2.7.2
  • Moodle » Moodle » Version: 2.7.3
    cpe:2.3:a:moodle:moodle:2.7.3
  • Moodle » Moodle » Version: 2.7.4
    cpe:2.3:a:moodle:moodle:2.7.4
  • Moodle » Moodle » Version: 2.7.5
    cpe:2.3:a:moodle:moodle:2.7.5
  • Moodle » Moodle » Version: 2.7.6
    cpe:2.3:a:moodle:moodle:2.7.6
  • Moodle » Moodle » Version: 2.7.7
    cpe:2.3:a:moodle:moodle:2.7.7
  • Moodle » Moodle » Version: 2.7.8
    cpe:2.3:a:moodle:moodle:2.7.8
  • Moodle » Moodle » Version: 2.8.0
    cpe:2.3:a:moodle:moodle:2.8.0
  • Moodle » Moodle » Version: 2.8.1
    cpe:2.3:a:moodle:moodle:2.8.1
  • Moodle » Moodle » Version: 2.8.2
    cpe:2.3:a:moodle:moodle:2.8.2
  • Moodle » Moodle » Version: 2.8.3
    cpe:2.3:a:moodle:moodle:2.8.3
  • Moodle » Moodle » Version: 2.8.4
    cpe:2.3:a:moodle:moodle:2.8.4
  • Moodle » Moodle » Version: 2.8.5
    cpe:2.3:a:moodle:moodle:2.8.5
  • Moodle » Moodle » Version: 2.8.6
    cpe:2.3:a:moodle:moodle:2.8.6
  • Moodle » Moodle » Version: 2.9.0
    cpe:2.3:a:moodle:moodle:2.9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved