-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| moodle/moodle | composer | >= 3.7.0, < 3.7.3 | 3.7.3 |
| moodle/moodle | composer | >= 3.6.0, < 3.6.7 | 3.6.7 |
| moodle/moodle | composer | >= 3.5.0, < 3.5.9 | 3.5.9 |
Miggo AIRoot Cause AnalysisThe vulnerability involves reflected XSS through fatal error messages. Functions handling these messages were likely modified to add sanitization or escaping, making them the vulnerable functions. The exact function names would depend on the specific code changes made in the patch for MDL-66161.