5 matches found
Fedora 29 : moodle (2018-6a4a3b78fd)
CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...
Fedora 28 : moodle (2018-f4910a3260)
CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...
Fedora 27 : moodle (2018-4ec3eecd7f)
CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...
CVE-2018-16854
A flaw was found in moodle versions 3.5 to 3.5.2, 3.4 to 3.4.5, 3.3 to 3.3.8, 3.1 to 3.1.14 and earlier. The login form is not protected by a token to prevent login cross-site request forgery. Fixed versions include 3.6, 3.5.3, 3.4.6, 3.3.9 and 3.1.15...
CVE-2018-16854
CVE-2018-16854 – Moodle Login CSRF relates to Moodle versions 3.5–3.5.2, 3.4–3.4.5, 3.3–3.3.8, and 3.1–3.1.14. The vulnerability is a login CSRF issue due to the login form not being protected by a token to prevent cross-site request forgery. Fixed versions include Moodle 3.6, 3.5.3, 3.4.6, 3.3.9...