Hi everyone, at my university, we're using Moodle 3.10.3, but I'm not sure if the vulnerabilities are working properly. When I add an XSS payload in the description, it works locally in my editor, but once I save it, other users can't see the XSS – it seems to be sanitized or escaped.

I know that 3.10.3 is an old version, but could you help me identify any other vulnerabilities I can exploit at the university?

Maybe there are links to exploits?