5 matches found
CVE-2024-25982
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk...
CVE-2024-25982
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk...
CVE-2024-25982
CVE-2024-25982 corresponds to a CSRF risk in Moodle where the update-link for language packs did not include the necessary token. The OSV/GHSA entries explicitly describe a cross-site request forgery risk in moodle’s language import/update flow, caused by the missing CSRF token. Documented impact...
CVE-2024-25982 Msa-24-0005: csrf risk in language import utility
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk...
CVE-2024-25982 Msa-24-0005: csrf risk in language import utility
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk...