Description

In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk.

Remediation

References

CVE-2021-36403

Related Vulnerabilities

PostgreSQL Other Vulnerability (CVE-2004-0547)

WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.14)

Sqlite Use After Free Vulnerability (CVE-2019-5018)

Joomla Incorrect Authorization Vulnerability (CVE-2010-1435)

WordPress Plugin BezahlCode-Generator 'gen_name' Parameter Cross-Site Scripting (1.0)

Severity

Medium

Classification

CVE-2021-36403 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities