Moodle · Moodle · CVE-2017-2645
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 3.x
**Description**
A cross-site scripting (XSS) issue can occur via attachments to evidence of prior learning, allowing for potential exploitation.
**Recommendations**
For Moodle versions 3.x, update to a version that includes a fix for this issue to prevent XSS attacks.