Description In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums. Remediation References CVE-2017-2576 Related Vulnerabilities MySQL CVE-2015-4833 Vulnerability (CVE-2015-4833) osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22609) MySQL CVE-2019-2694 Vulnerability (CVE-2019-2694) WordPress Plugin Advanced WP Columns Cross-Site Scripting (2.0.6) Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8481) Severity Medium Classification CVE-2017-2576 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Tags Missing Update Known Vulnerabilities