[CRITICAL] Moodle's Mustache pix helper contained a potential Mustache injection risk if combined with user input

PKSA-55x8-drvs-2svz CVE-2023-28333 GHSA-q2x3-2f9g-h559

Affected package: moodle/moodle

Affected version: <3.9.20|>=3.11.0,<3.11.13|>=4.0.0,<4.0.7|>=4.1.0,<4.1.2

Reported by:
GitHub