Les Bell

**Name of the Vulnerable Software and Affected Versions** Moodle versions prior to 3.5.1 Moodle versions prior to 3.4.4 Moodle versions prior to 3.3.7 Moodle versions prior to 3.1.13 **Description** A flaw was found in the software. When a quiz question bank is imported, it is possible for the question preview to execute JavaScript written into the question bank. **Recommendations** For versions prior to 3.5.1, update to version 3.5.1 or later. For versions prior to 3.4.4, update to version 3.4.4 or later. For versions prior to 3.3.7, update to version 3.3.7 or later. For versions prior to 3.1.13, update to version 3.1.13 or later.