PublicDate: 2007-07-04 15:30:00 UTC
Candidate: CVE-2007-3555
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3555
Description:
 Cross-site scripting (XSS) vulnerability in index.php in Moodle 1.7.1
 allows remote attackers to inject arbitrary web script or HTML via a style
 expression in the search parameter, a different vulnerability than
 CVE-2004-1424.
Ubuntu-Description: 
Notes: 
Bugs: 
 http://tracker.moodle.org/browse/MDL-10341
Priority: low
Discovered-by:
Assigned-to:
CVSS:


Patches_moodle:
upstream_moodle: released (1.7.3)
dapper_moodle: ignored (reached end-of-life)
edgy_moodle: needed (reached end-of-life)
feisty_moodle: needed (reached end-of-life)
gutsy_moodle: not-affected
hardy_moodle: not-affected
intrepid_moodle: not-affected
jaunty_moodle: not-affected
karmic_moodle: not-affected
devel_moodle: not-affected