Candidate: CVE-2011-4278
PublicDate: 2012-07-16 10:28:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4278
Description:
 Cross-site scripting (XSS) vulnerability in the tag autocomplete
 functionality in Moodle 1.9.x before 1.9.11 and 2.0.x before 2.0.2 allows
 remote attackers to inject arbitrary web script or HTML via unspecified
 vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_moodle:
upstream_moodle: needs-triage
hardy_moodle: ignored (reached end-of-life)
lucid_moodle: ignored (reached end-of-life)
maverick_moodle: ignored (reached end-of-life)
natty_moodle: ignored (reached end-of-life)
oneiric_moodle: not-affected (1.9.9.dfsg2-3)
precise_moodle: not-affected
quantal_moodle: not-affected
raring_moodle: not-affected
saucy_moodle: not-affected
devel_moodle: not-affected