CVE-2004-1424 - Amentiferous Schoolroom
Description
Cross-site scripting (XSS) vulnerability in view.php in Moodle 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.
Reference
http://www.securityfocus.com/bid/12120 http://secunia.com/advisories/13694 http://marc.info/?l=bugtraq&m=110444531816566&w=2 http://marc.info/?l=bugtraq&m=110425409614735&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18702