CVE-2024-33997

CVE-2024-33997: moodle: stored XSS risk when editing another user's equation in equation editor

Weakness CWE-79 · XSS
Published May 31, 2024
Last update November 21, 2024

CVSS base score

What the vulnerability does

01Description

Additional sanitizing was required when opening the equation editor to prevent a stored XSS risk when editing another user's equation.

Key dates

02Disclosure timeline

May 31, 2024 CVE published
November 21, 2024 Record updated