Lucene search
FedoraCVELIST:CVE-2022-0335HistoryJan 25, 2022 - 7:11 p.m.
CVE-2022-0335
2022-01-2519:11:12
CWE-352
fedora
www.cve.org
A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. The “delete badge alignment” functionality did not include the necessary token check to prevent a CSRF risk.
CNA Affected
[
{
"product": "moodle",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "moodle 3.11.5, moodle 3.10.9 and moodle 3.9.12"
}
]
}
]Related
osv
osv
CVE-2022-0335
2022-01-25 20:15:08
BIT-moodle-2022-0335
2024-03-06 11:05:44
Cross Site Request Forgery in Moodle
2022-01-28 22:07:23
veracode
veracode
Token Validation Bypass
2022-01-26 07:07:38
github
github
Cross Site Request Forgery in Moodle
2022-01-28 22:07:23
nvd
nvd
CVE-2022-0335
2022-01-25 20:15:08
cnvd
cnvd
Moodle Cross-Site Request Forgery Vulnerability (CNVD-2022-08151)
2022-01-26 00:00:00
ubuntucve
ubuntucve
CVE-2022-0335
2022-01-25 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-01-25 20:15:00
cve
cve
CVE-2022-0335
2022-01-25 20:15:08
openvas
openvas
Moodle < 3.9.12, 3.10.x < 3.10.9, 3.11.x < 3.11.5 Multiple Vulnerabilities
2022-01-26 00:00:00
nessus
nessus
Moodle 3.11.x < 3.11.5 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.9 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.12 Multiple Vulnerabilities
2023-02-20 00:00:00