Description
The stored-XSS vulnerability was discovered in Moodle which exists due to insufficient sanitization of user-supplied data in several "social" user profile fields. An attacker could inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Remediation
References
Related Vulnerabilities
WordPress Plugin Duplicate Post Multiple Vulnerabilities (2.5)
Squid Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-8449)
WordPress Plugin Mapplic Lite Server-Side Request Forgery (1.0)
Lighttpd Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4559)
WordPress Plugin Content Aware Sidebars-Unlimited Widget Areas Security Bypass (3.8)