Description In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam. Remediation References CVE-2016-5013 Related Vulnerabilities WebLogic CVE-2024-20986 Vulnerability (CVE-2024-20986) WordPress 4.9.x Multiple Vulnerabilities (4.9) WordPress Plugin WooCommerce Arbitrary File Download (3.4.5) WebLogic CVE-2020-14639 Vulnerability (CVE-2020-14639) Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-0983) Severity Medium Classification CVE-2016-5013 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities