Description In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin. Remediation References CVE-2021-36394 Related Vulnerabilities Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664) WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.6) Lighttpd Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-19052) WordPress Plugin Community by PeepSo-Social Network, Membership, Registration, User Profiles Privilege Escalation (1.6.0) WordPress Plugin Slider Hero with Animation, Video Background Cross-Site Scripting (8.4.3) Severity Critical Classification CVE-2021-36394 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities