3 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-35133
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3,...
Moodle 3.x Bypass Vulnerability (Jan 2018) - Windows
Setting for blocked hosts list can be bypassed with multiple A record hostnames. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Session fixation
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames...