Lucene search
GoogleOSV:CVE-2021-36396HistoryMar 06, 2023 - 9:15 p.m.
CVE-2021-36396
2023-03-0621:15:10
Google
osv.dev
6
0.001 Low
EPSS
Percentile
27.8%
In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.
Related
cvelist
cvelist
CVE-2021-36396
2023-03-06 00:00:00
ubuntucve
ubuntucve
CVE-2021-36396
2023-03-06 00:00:00
osv
osv
Moodle vulnerable to Server-Side Request Forgery
2023-03-06 21:30:18
BIT-moodle-2021-36396
2024-03-06 11:09:18
prion
prion
Server side request forgery (ssrf)
2023-03-06 21:15:00
cve
cve
CVE-2021-36396
2023-03-06 21:15:00
veracode
veracode
Server-side Request Forgery (SSRF)
2023-03-14 02:15:27
github
github
Moodle vulnerable to Server-Side Request Forgery
2023-03-06 21:30:18
openvas
openvas
Moodle < 3.9.8, 3.10.x < 3.10.5, 3.11.x < 3.11.1 Multiple Vulnerabilities
2023-03-07 00:00:00
nessus
nessus
Moodle 3.11.x < 3.11.1 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.5 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.8 Multiple Vulnerabilities
2023-02-20 00:00:00