CVE-2020-25702

Publication date

2020-11-19 16:17:03

Family

redhat

State

PUBLISHED

Description

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10.