Description
In Moodle, ID numbers displayed in the quiz override screens required additional sanitizing to prevent a stored XSS risk.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3388)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32566)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8657)
Drupal Core 8.x.x Security Bypass (8.0.0 - 8.6.18)
WordPress Plugin WP Live.php 's' Parameter Cross-Site Scripting (1.2.1)