CVE-2014-3551

EIP tracks 1 public exploit for CVE-2014-3551. PoCs published by JavaGarcia.

AI-analyzed exploit summary This repository contains a writeup describing multiple XSS vulnerabilities in Moodle's advanced-grading implementation, specifically in rubric qualification and rating fields. The README provides details on the vulnerable endpoint and parameters but does not include exploit code.

Multiple cross-site scripting (XSS) vulnerabilities in the advanced-grading implementation in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) qualification or (2) rating field in a rubric.