3 matches found
Moodle <= 3.1.17, 3.4.x <= 3.4.8, 3.5.x <= 3.5.5, 3.6.x <= 3.6.3 Multiple Vulnerabilities
Moodle is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation;...
CVE-2019-10133
A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The form to upload cohorts contained a redirect field, which was not restricted to internal URLs...
CVE-2019-10133
CVE-2019-10133 concerns Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The vulnerability is in the cohort upload form, where a redirect field was not restricted to internal URLs, enabling an open redirect condition. Affected software is Moodle; root cause is improper validation of the redirec...