Security Advisory
CVE-2020-25702
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10.