What the vulnerability does

01Description

It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that if the TeX notation filter was enabled, additional sanitizing of TeX content was required to prevent the risk of stored XSS.

Key dates

02Disclosure timeline

January 28, 2021 CVE published
August 3, 2024 Record updated