Description In Moodle 3.x, there is XSS via a calendar event name. Remediation References CVE-2018-1045 Related Vulnerabilities WordPress Plugin Total Upkeep-WordPress Backup plus Restore & Migrate by BoldGrid Information Disclosure (1.14.9) WordPress Plugin Easy Redirect Manager Cross-Site Scripting (2.18.18) Jenkins Other Vulnerability (CVE-2022-2048) Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.8.12) ownCloud Improper Access Control Vulnerability (CVE-2016-9460) Severity Medium Classification CVE-2018-1045 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities