Moodle · Moodle · CVE-2021-20279
Name of the Vulnerable Software and Affected Versions:
moodle versions prior to 3.10.2
moodle versions prior to 3.9.5
moodle versions prior to 3.8.8
moodle versions prior to 3.5.17
Description:
The ID number user profile field required additional sanitizing to prevent a stored XSS risk.
Recommendations:
For versions prior to 3.10.2, update to version 3.10.2 or later.
For versions prior to 3.9.5, update to version 3.9.5 or later.
For versions prior to 3.8.8, update to version 3.8.8 or later.
For versions prior to 3.5.17, update to version 3.5.17 or later.