Unrated severityNVD Advisory· Published Aug 6, 2004· Updated Jun 16, 2026
CVE-2004-1711
CVE-2004-1711
Description
Cross-site scripting (XSS) vulnerability in post.php in Moodle before 1.3 allows remote attackers to inject arbitrary web script or HTML via the reply parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:moodle:moodle:1.1.1:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:moodle:moodle:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:1.3.3:*:*:*:*:*:*:*
- (no CPE)range: <1.3
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/12262nvdExploitPatchVendor Advisory
- www.securityfocus.com/bid/10884nvdExploitPatchVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/16924nvd
News mentions
0No linked articles in our index yet.