CVE-2010-2231

2010-06-28T17:30:00
ID CVE-2010-2231
Type cve
Reporter cve@mitre.org
Modified 2010-09-09T05:42:00

Description

Cross-site request forgery (CSRF) vulnerability in report/overview/report.php in the quiz module in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to hijack the authentication of arbitrary users for requests that delete quiz attempts via the attemptid parameter.