CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-37674

Cross Site Scripting vulnerability in Moodle CMS v3.10 allows a remote attacker to execute arbitrary code via the Field Name (name parameter) of a new activity.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 79.2%

CVSS Severity

CVSS v3 Score 5.5

References

http://moodle.com
https://github.com/MohamedAzizMSALLEMI/Moodle_Security/blob/main/CVE-2024-37674.md
http://moodle.com
https://github.com/MohamedAzizMSALLEMI/Moodle_Security/blob/main/CVE-2024-37674.md

Products affected by CVE-2024-37674

Moodle » Moodle » Version: 3.10.0

cpe:2.3:a:moodle:moodle:3.10.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-37674

Products

Pricing

Contact Us