Cross-Site Scripting (XSS) Vulnerability in Moodle Versions 3.11 to 4.2

CVE-2023-35131 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.

Learn more about our Web Application Penetration Testing UK.