In Moodle, ID numbers exported in HTML data formats required additional sanitizing to prevent a local stored XSS risk.
{ "severity": "Medium", "cpes": [ "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*" ] }