Vulnerabilities > Molie Instructure Canvas Linking Tool Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-14 | CVE-2021-25006 | Cross-site Scripting vulnerability in Molie Instructure Canvas Linking Tool Project Molie Instructure Canvas Linking Tool The MOLIE WordPress plugin through 0.5 does not escape the course_id parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting issue | 4.3 |
| 2022-03-14 | CVE-2021-25007 | SQL Injection vulnerability in Molie Instructure Canvas Linking Tool Project Molie Instructure Canvas Linking Tool The MOLIE WordPress plugin through 0.5 does not validate and escape a post parameter before using in a SQL statement, leading to an SQL Injection | 7.5 |