Moodle · Moodle · CVE-2020-1691
**Name of the Vulnerable Software and Affected Versions**
Moodle version 3.8
**Description**
The issue concerns stored cross-site scripting. In Moodle, messages required extra sanitizing before updating the conversation overview to prevent this risk.
**Recommendations**
For Moodle version 3.8, ensure that messages are properly sanitized before updating the conversation overview to prevent stored cross-site scripting.