{"vulnerability": "cve-2020-25631", "sightings": [{"uuid": "c8a33b6f-7330-4a1e-bfe9-2253e2d666f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25631", "type": "seen", "source": "https://t.me/cibsecurity/17230", "content": "\u203c CVE-2020-25631 \u203c\n\nA vulnerability was found in Moodle 3.9 to 3.9.1, 3.8 to 3.8.4 and 3.7 to 3.7.7 where it was possible to include JavaScript in a book's chapter title, which was not escaped on the \"Add new chapter\" page. This is fixed in 3.9.2, 3.8.5 and 3.7.8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-08T07:30:43.000000Z"}]}