CVE-2021-36398: Moodle Cross-site Scripting vulnerability
5.4
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.71865%
CWE
Published
3/7/2023
Updated
3/13/2023
KEV Status
No
Technology
PHP
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
moodle/moodle | composer | = 3.11 | 3.11.1 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from insufficient output sanitization in the web service token display. Moodle's security advisory (MSA-21-0026) specifically mentions ID numbers in the token list required additional sanitizing. The token management interface (admin/webservice/tokens.php
) would be the logical location for rendering this data. Moodle typically uses format_string()
or other output filters for XSS protection, and the vulnerability suggests this sanitization was missing in the token list rendering function. The high confidence comes from the direct correlation between the vulnerability description and the token management interface's responsibility to display user-supplied ID numbers.