Vulnerability Description
Moodle 3.10.1 is vulnerable to persistent/stored cross-site scripting (XSS) due to the improper input sanitization on the "Additional HTML Section" via "Header and Footer" parameter in /admin/settings.php. This vulnerability is leading an attacker to steal admin and all user account cookies by storing the malicious XSS payload in Header and Footer. NOTE: this is disputed by the vendor because the "Additional HTML Section" for "Header and Footer" can only be supplied by an administrator, who is intentionally allowed to enter unsanitized input (e.g., site-specific JavaScript).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moodle | Moodle | 3.10.1 |
Related Weaknesses (CWE)
References
- https://docs.moodle.org/402/en/Risks
- https://github.com/moodle/moodleProduct
- https://github.com/p4nk4jv/CVEs-Assigned/blob/master/Moodle-3.10.1-CVE-2021-2713Exploit
- https://docs.moodle.org/402/en/Risks
- https://github.com/moodle/moodleProduct
- https://github.com/p4nk4jv/CVEs-Assigned/blob/master/Moodle-3.10.1-CVE-2021-2713Exploit
FAQ
What is CVE-2021-27131?
CVE-2021-27131 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Moodle 3.10.1 is vulnerable to persistent/stored cross-site scripting (XSS) due to the improper input sanitization on the "Additional HTML Section" via "Header and Footer" parameter in /admin/settings...
How severe is CVE-2021-27131?
CVE-2021-27131 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-27131?
Check the references section above for vendor advisories and patch information. Affected products include: Moodle Moodle.