UBUNTU-CVE-2015-2273
- Source
- https://ubuntu.com/security/CVE-2015-2273
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2015/UBUNTU-CVE-2015-2273.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2015-2273
- Upstream
- Withdrawn
- 2025-07-18T16:43:10Z
- Published
- 2015-06-01T19:59:00Z
- Modified
- 2025-07-16T08:11:26.647534Z
- Severity
-
- Ubuntu - medium
- Summary
- [none]
- Details
-
Cross-site scripting (XSS) vulnerability in mod/quiz/report/statistics/statisticsquestiontable.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before 2.7.6, and 2.8.x before 2.8.4 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the student role for a crafted quiz response.
- References
Affected packages
Ubuntu:16.04:LTS / moodle
Package
- Name
- moodle
- Purl
- pkg:deb/ubuntu/moodle@3.0.3+dfsg-0ubuntu1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.3+dfsg-0ubuntu1
Ubuntu:18.04:LTS / moodle
Package
- Name
- moodle
- Purl
- pkg:deb/ubuntu/moodle@3.0.3+dfsg-0ubuntu1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.3+dfsg-0ubuntu1