VDB
GCVE-110-MAGEIA-2013-356
GCVE-110-MAGEIA-2013-356
Advisory Published
Some files were being delivered with incorrect headers in Moodle before
2.4.7, meaning they could be cached downstream (CVE-2013-4522).
Cross-site scripting in Moodle before 2.4.7 due to JavaScript in messages
being executed on some pages (CVE-2013-4523).
The file system repository in Moodle before 2.4.7 was allowing access to
files beyond the Moodle file area (CVE-2013-4524).
Cross-site scripting in Moodle before 2.4. due to JavaScript in question
answers being executed on the Quiz Results page (CVE-2013-4525).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | moodle | 0 (affected), 2.4.7-1.mga3 (unaffected) | — |
References
Browse GCVE Records
72,096 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.