MEDIUM
Poodll
CVE published 2017-02-10
CVE-2017-5945
CVE-2017-5945 is a cross-site scripting issue in the PoodLL Filter plugin for Moodle. According to NVD, versions through 3.0.20 are affected, and the flaw comes from insufficient filtering of user-supplied data in the poodll_audio_url HTTP GET parameter used by the poodll/mp3recorderskins/brazil/index.php path. An attacker could cause arbitrary HTML and script code to execute in a victim’s browser in the [truncated]