[MEDIUM] Moodle vulnerable to XSS via bundled spikephpcoverage library

PKSA-wcmx-m3sy-93sz CVE-2011-4280 GHSA-mx5g-3vxh-rgm8

Affected package: moodle/moodle

Affected version: >=2.0,<2.0.2

Reported by:
GitHub