3 matches found
CVE-2024-34008 moodle: CSRF risk in analytics management of models
Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk...
CVE-2024-34008 moodle: CSRF risk in analytics management of models
Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk...
CVE-2024-34008
Moodle CSRF risk in analytics management of models: description repeatedly states missing CSRF token in admin tools for analytics models, enabling potential unauthorized admin actions. Root cause: lack of CSRF protection in the analytics-models admin interface. Documented across CVE-2024-34008 en...