vulnerability
Moodle: Reflected XSS in admin task logs filter (CVE-2020-14320)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:P/I:P/A:N) | Aug 16, 2022 | Aug 19, 2022 | Jan 28, 2025 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
Aug 16, 2022
Added
Aug 19, 2022
Modified
Jan 28, 2025
Description
In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.
Solution(s)
moodle-upgrade-3_7_7moodle-upgrade-3_8_4
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.