Cross-Site Request Forgery (CSRF)
moodle is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists in the resetalltemplates parameter of actionbar.php because the CSRF token was not properly validated, which allows an attacker to access sensitive information and reset all the database activity templates...