Ja-sig - Phpcas Client Library CVE - CVE Search - CVE Details

Filtered by vendor Ja-sig Subscribe

Filtered by product Phpcas Client Library

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2010-1618	2 Ja-sig, Moodle	2 Phpcas Client Library, Moodle	2020-12-01	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in the phpCAS client library before 1.1.0, as used in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled in an error message.

Vulnerabilities (CVE)