CVE 2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
See the
CVE page on Mitre.org
for more details.
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.