2 matches found
moodle-block_sitenews 跨站请求伪造漏洞
moodle-blocksitenews is a library by Jan Eberhardt, a personal developer. It is used to display site news at full scale on the home page. A cross-site request forgery vulnerability exists in moodle-blocksitenews version 1.0. An attacker can exploit this vulnerability to perform cross-site request...
PT-2022-9027 · Moodle · Moodle-Block Sitenews
Name of the Vulnerable Software and Affected Versions: moodle-block sitenews version 1.0 Description: A vulnerability was found in the get content function of the block sitenews.php file, leading to cross-site request forgery. The attack can be initiated remotely. Recommendations: For moodle-bloc...