CVE-2018-10891

Published: 2018-07-10T18:29Z

Last Modified: 2024-11-21T03:42Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt