CVE-2008-3325

🗓️ 25 Jul 2008 16:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 61 Views

Cross-site request forgery (CSRF) vulnerability in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to modify profile settings

Reporter	Title	Published	Views	Family All 16
Cvelist	CVE-2008-3325	25 Jul 200816:00	–	cvelist
Debian	[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities	22 Dec 200808:27	–	debian
Tenable Nessus	Debian DSA-1691-1 : moodle - several vulnerabilities	22 Dec 200800:00	–	nessus
Tenable Nessus	openSUSE 10 Security Update : moodle (moodle-5487)	7 Aug 200800:00	–	nessus
EUVD	EUVD-2008-3313	7 Oct 202500:30	–	euvd
NVD	CVE-2008-3325	25 Jul 200816:41	–	nvd
OpenVAS	Debian: Security Advisory (DSA-1691-1)	29 Dec 200800:00	–	openvas
OpenVAS	Ubuntu USN-698-1 (nagios)	5 Jun 200900:00	–	openvas
OpenVAS	Debian Security Advisory DSA 1691-1 (moodle)	29 Dec 200800:00	–	openvas
OpenVAS	Ubuntu USN-699-1 (blender)	29 Dec 200800:00	–	openvas

NVD

Node

moodle moodleRange1.6–1.6.7

moodle moodleRange1.7–1.7.5

Node

debian debian_linuxMatch4.0

Source	Link
secunia	www.secunia.com/advisories/31339
debian	www.debian.org/security/2008/dsa-1691
procheckup	www.procheckup.com/Vulnerability_PR08-16.php
moodle	www.moodle.org/mod/forum/discuss.php
secunia	www.secunia.com/advisories/31196
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/43964
securityfocus	www.securityfocus.com/archive/1/494658/100/0/threaded
lists	www.lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html

23 Apr 2026 00:35Current

7.6High risk

Vulners AI Score7.6

CVSS 26

EPSS0.00397

CWE-352