Miggo Logo
Miggo Vulnerability Database
CVE-2024-34000

CVE-2024-34000: Moodle Cross-site Scripting (XSS)

4.3

CVSS Score
3.1

Basic Information

CVE ID
CVE-2024-34000
GHSA ID
GHSA-8qwh-4vwv-7c5m
EPSS Score
0.5684%
CWE
CWE-79
Published
5/31/2024
Updated
11/15/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Package NameEcosystemVulnerable VersionsFirst Patched Version
moodle/moodlecomposer>= 4.3.0, < 4.3.44.3.4
moodle/moodlecomposer>= 4.2.0, < 4.2.74.2.7
moodle/moodlecomposer< 4.1.104.1.10

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

I* num**rs *ispl*y** in t** l*sson ov*rvi*w r*port r*quir** ***ition*l s*nitizin* to pr*v*nt * stor** XSS risk.

Reasoning

No *n*lysis *v*il**l*