What the vulnerability does

01Description

In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk.

Key dates

02Disclosure timeline

March 6, 2023 CVE published
March 7, 2025 Record updated