Moodle · Moodle · CVE-2004-1711
**Name of the Vulnerable Software and Affected Versions**
Moodle versions prior to 1.3
**Description**
A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the `reply` parameter in the "post.php" file.
**Recommendations**
For versions prior to 1.3, update to version 1.3 or later to resolve the issue.