Description In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam. Remediation References CVE-2016-5013 Related Vulnerabilities WordPress Plugin Link Library SQL Injection (5.9.13.26) EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7987) WordPress Plugin Membership For WooCommerce-Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members with WooCommerce Membership Arbitrary File Upload (2.1.6) Jenkins Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2020-2105) MySQL CVE-2021-35640 Vulnerability (CVE-2021-35640) Severity Medium Classification CVE-2016-5013 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities