What the vulnerability does

01Description

In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk.

Key dates

02Disclosure timeline

March 6, 2023 CVE published
March 7, 2025 Record updated