CVE-2019-3850
Moodle prior to 3.6.3, 3.5.5, 3.4.8 and 3.1.17 is affected by CVE-2019-3850. The issue arises because links in assignment submission comments could be opened in the same browser window, and without a no-referrer policy this can be exploited. Affected versions, impact details, and CVSS metrics are...