CVE-2025-34032

MEDIUM EXPLOITED NUCLEI

Moodle LMS Jmol <6.1 - XSS

Title source: llm

Description

A reflected cross-site scripting (XSS) vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the data parameter in jsmol.php. The application fails to properly sanitize user input before embedding it into the HTTP response, allowing an attacker to execute arbitrary JavaScript in the victim's browser by crafting a malicious link. This can be used to hijack user sessions or manipulate page content. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-02 UTC.

Exploits (1)

exploitdb WORKING POC

by Dionach Ltd · textwebappsphp

https://www.exploit-db.com/exploits/46881

View Code ZIP pw:eip

Nuclei Templates (1)

Moodle LMS Jmol Plugin <= 6.1 - Cross-Site Scripting

MEDIUMby madrobot,ritikchaddha

References (3)

[Third Party Advisory] https://vulncheck.com/advisories/moodle-lms-jmol-plugin-xss

[Exploit, Third Party Advisory] https://www.dionach.com/moodle-jmol-plugin-multiple-vulnerabilities/

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/46881

Scores

CVSS v3 6.1

EPSS 0.0013

EPSS Percentile 32.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

VulnCheck KEV 2025-06-23

CWE

CWE-79

Status published

Products (2)

geoffrowland/jmol < 6.1

Moodle/Jmol Plugin < 6.1

Published Jun 24, 2025

Tracked Since Feb 18, 2026