Moodle Improper Encoding or Escaping of Output Vulnerability - CVE-2021-40694 - Vulnerability Database

Moodle Improper Encoding or Escaping of Output Vulnerability - CVE-2021-40694

Medium

Reference: CVE-2021-40694

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-40694

Title: Moodle Improper Encoding or Escaping of Output Vulnerability

Overview:

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.