Lucene search

K
cvelistRedhatCVELIST:CVE-2021-20280
HistoryMar 15, 2021 - 9:35 p.m.

CVE-2021-20280

2021-03-1521:35:44
CWE-79
redhat
www.cve.org

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

CNA Affected

[
  {
    "product": "moodle",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Fixed in 3.10.2, 3.9.5, 3.8.8, 3.5.17"
      }
    ]
  }
]

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%