2 matches found
CVE-2024-25979
CVE-2024-25979 affects Moodle where the vulnerability stems from improper handling of URL parameters in the forum search feature, allowing parameters beyond those intended to be accepted. The root cause is unsecured/insufficient validation of user-supplied URL query parameters, which can lead to ...
CVE-2024-25979 Msa-24-0002: forum search accepted random parameters in its url
The URL parameters accepted by forum search were not limited to the allowed parameters...