Lucene search
FedoraCVELIST:CVE-2021-43559HistoryNov 22, 2021 - 4:00 p.m.
CVE-2021-43559
2021-11-2216:00:05
CWE-352
fedora
www.cve.org
5
moodle
csrf
risk
delete
badge
functionality
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. The “delete related badge” functionality did not include the necessary token check to prevent a CSRF risk.
CNA Affected
[
{
"product": "moodle",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "moodle 3.11.4, moodle 3.10.8 and moodle 3.9.11"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2021-11-22 16:15:00
cve
cve
CVE-2021-43559
2021-11-22 16:15:08
cnvd
cnvd
Moodle Cross-Site Request Forgery Vulnerability (CNVD-2021-92541)
2021-11-17 00:00:00
osv
osv
BIT-moodle-2021-43559
2024-03-06 11:06:35
CVE-2021-43559
2021-11-22 16:15:08
Moodle contains CSRF vulnerability
2022-05-24 19:21:11
ubuntucve
ubuntucve
CVE-2021-43559
2021-11-22 00:00:00
github
github
Moodle contains CSRF vulnerability
2022-05-24 19:21:11
veracode
veracode
Cross-Site Request Forgery (CSRF)
2021-11-23 10:49:34
nvd
nvd
CVE-2021-43559
2021-11-22 16:15:08
nessus
nessus
Moodle 3.9.x < 3.9.11 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.11.x < 3.11.4 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.8 Multiple Vulnerabilities
2023-02-20 00:00:00
openvas
openvas
Moodle < 3.9.11, 3.10.x < 3.10.8, 3.11.x < 3.11.4 Multiple Vulnerabilities
2021-11-23 00:00:00