Description
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
Remediation
References
Related Vulnerabilities
WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.28)
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-11322)
Oracle Application Server CVE-2008-2619 Vulnerability (CVE-2008-2619)
WordPress Plugin Simple:Press Security Bypass and Arbitrary File Upload Vulnerabilities (4.1.2)
WordPress Plugin BuddyPress 'page' Parameter SQL Injection (1.5.4)