Description In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin. Remediation References CVE-2021-36394 Related Vulnerabilities Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4308) phpMyAdmin Improper Input Validation Vulnerability (CVE-2011-1941) TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45818) Payara Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-37422) WordPress Plugin Youzify-BuddyPress Community, User Profile, Social Network & Membership for WordPress SQL Injection (1.2.5) Severity Critical Classification CVE-2021-36394 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities