CVE-2023-35131

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-35131
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-35131.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-35131
Aliases
Downstream
Published
2023-06-22T21:15:09.413Z
Modified
2025-11-20T12:18:33.374353Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type
GIT
Repo
https://github.com/moodle/moodle
Events
Introduced
94f2d3fc4b974c5c7d500988c56b7ca15f58d7ec
Fixed
bfbae65caac00b3d4cfcdc3c8b8a18f66f3121f5

Affected versions

v3.*

v3.11.0
v3.11.1
v3.11.10
v3.11.11
v3.11.12
v3.11.13
v3.11.14
v3.11.2
v3.11.3
v3.11.4
v3.11.5
v3.11.6
v3.11.7
v3.11.8
v3.11.9

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-35131.json"