In Moodle 3.8, messages required extra sanitizing before updating the conversation overview, to prevent the risk of stored cross-site scripting. https://moodle.org/mod/forum/discuss.php?d=395953
Created moodle tracking bugs for this issue: Affects: epel-7 [bug 2116701] Affects: fedora-all [bug 2116700]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.