Moodle CVE-2017-2645 Cross Site Scripting Vulnerability
Description
Serving files attached to evidence of prior learning did not force download. When viewed by other users they would be opened in current moodle sessions
Affected Applications
Moodle