Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-12156

Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.

2017-09-18T04:29:00.203

2025-04-20T01:37:25.860

Deferred

CVSSv3.0: 6.1 (MEDIUM)

AV:N/AC:M/Au:N/C:N/I:P/A:N

8.6

2.9

Type	Vendor	Product	Version/Range	Vulnerable?
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.1	Yes
Application	moodle	moodle	3.0.2	Yes
Application	moodle	moodle	3.0.3	Yes
Application	moodle	moodle	3.0.4	Yes
Application	moodle	moodle	3.0.5	Yes
Application	moodle	moodle	3.0.6	Yes
Application	moodle	moodle	3.0.7	Yes
Application	moodle	moodle	3.0.8	Yes
Application	moodle	moodle	3.0.9	Yes
Application	moodle	moodle	3.0.10	Yes
Application	moodle	moodle	3.1.0	Yes
Application	moodle	moodle	3.1.0	Yes
Application	moodle	moodle	3.1.0	Yes
Application	moodle	moodle	3.1.0	Yes
Application	moodle	moodle	3.1.1	Yes
Application	moodle	moodle	3.1.2	Yes
Application	moodle	moodle	3.1.3	Yes
Application	moodle	moodle	3.1.4	Yes
Application	moodle	moodle	3.1.5	Yes
Application	moodle	moodle	3.1.6	Yes
Application	moodle	moodle	3.1.7	Yes
Application	moodle	moodle	3.1.8	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.0	Yes
Application	moodle	moodle	3.2.1	Yes
Application	moodle	moodle	3.2.2	Yes
Application	moodle	moodle	3.2.3	Yes
Application	moodle	moodle	3.2.4	Yes
Application	moodle	moodle	3.2.5	Yes
Application	moodle	moodle	3.3.0	Yes
Application	moodle	moodle	3.3.1	Yes
Application	moodle	moodle	3.3.2	Yes