CVE-2019-20512 (ironwood)by Jeremyin Security Bulletinson Posted on March 23, 2020 Open edX Ironwood.1 allows support/certificates?course_id= reflected XSS.