Description
In Moodle, ID numbers displayed in the quiz override screens required additional sanitizing to prevent a stored XSS risk.
Remediation
References
Related Vulnerabilities
Internet Information Services Improper Input Validation Vulnerability (CVE-2009-4445)
Joomla! Core 3.9.x Cross-Site Scripting (3.9.0 - 3.9.23)
Drupal Core 9.0.x Remote Code Execution (9.0.0 - 9.0.7)
WordPress Plugin Elementor Addon Elements Cross-Site Request Forgery (1.11.7)
Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)