What the vulnerability does

01Description

In moodle, ID numbers displayed in the web service token list required additional sanitizing to prevent a stored XSS risk.

Key dates

02Disclosure timeline

March 6, 2023 CVE published
March 7, 2025 Record updated