CVE-2020-25627

Publication date

2020-12-09 00:04:20

Family

redhat

State

PUBLISHED

Description

The moodlenetprofile user profile field required extra sanitizing to prevent a stored XSS risk. This affects versions 3.9 to 3.9.1. Fixed in 3.9.2.