logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-46147

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-46147

Description:
Drag and Drop XBlock v2 implements a drag-and-drop style problem, where a learner has to drag items to zones on a target image. Versions prior to 3.0.0 are vulnerable to cross-site scripting in multiple XBlock Fields. Any platform that has deployed the XBlock may be impacted. Version 3.0.0 contains a patch for this issue. There are no known workarounds.
Last updated date:
12/01/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
12/01/2022
Reference url to background

https://github.com/openedx/xblock-drag-and-drop-v2/pull/295#issuecomment-1277693864

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy