Full title: Moodle 2.3.9, 2.4.6 - Multiple Vulnerabilities 
Category: web applications
Platform: php
Moodle versions 2.3.9 and below and 2.4.6 suffer from a javascript insertion vulnerability that allows for the addition of an RSS blog.

# 0day.today @ http://0day.today/