vulnerability

Moodle: Unspecified Security Vulnerability (CVE-2021-36403)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	Mar 6, 2023	Mar 15, 2023	Feb 15, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

Mar 6, 2023

Added

Mar 15, 2023

Modified

Feb 15, 2026

Description

In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk.

Solutions

moodle-upgrade-3_10_5moodle-upgrade-3_11_1moodle-upgrade-3_9_8

References

CVE-2021-36403
https://attackerkb.com/topics/CVE-2021-36403
CWE-912
URL-https://moodle.org/mod/forum/discuss.php?d=424809

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today