CVE-2020-25702

2020-11-19T17:15:00
ID CVE-2020-25702
Type cve
Reporter cve@mitre.org
Modified 2020-11-19T18:15:00

Description

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10.