CVE-2019-3810

MEDIUM

Moodle < 3.1.15 - XSS

Title source: rule

Description

A flaw was found in moodle versions 3.6 to 3.6.1, 3.5 to 3.5.3, 3.4 to 3.4.6, 3.1 to 3.1.15 and earlier unsupported versions. The /userpix/ page did not escape users' full names, which are included as text when hovering over profile images. Note this page is not linked to by default and its access is restricted.

Exploits (2)

exploitdb WORKING POC

by Fariskhi Vidyan · textwebappsphp

https://www.exploit-db.com/exploits/49814

View Code ZIP pw:eip

nomisec WORKING POC 17 stars

by farisv · poc

https://github.com/farisv/Moodle-CVE-2019-3810

View Code ZIP pw:eip

References (4)

[Patch, Vendor Advisory] http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64372

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/162399/Moodle-3.6.1-Cross-Site-Scripting.html

[Issue Tracking, Patch, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3810

[Patch, Vendor Advisory] https://moodle.org/mod/forum/discuss.php?d=381230#p1536767

Scores

CVSS v3 6.1

EPSS 0.0838

EPSS Percentile 92.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (2)

moodle/moodle 3.1.0 - 3.1.15

moodle/moodle 3.6.0 - 3.6.1Packagist

Published Mar 25, 2019

Tracked Since Feb 18, 2026