Lucene search
+L

5 matches found

github
github
added 2022/05/13 1:12 a.m.32 views

Moodle multiple cross-site request forgery (CSRF) vulnerabilities

Multiple cross-site request forgery CSRF vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allow remote attackers to hijack the authentication of teachers for quick-grading requests...

6.8CVSS7.8AI score0.01006EPSS
Exploits0References9Affected Software1
veracode
veracode
added 2017/07/18 8:56 a.m.21 views

Multiple Cross-Site Request Forgery (CSRF)

Moodle is vulnerable to multiple cross-site request forgery CSRF attacks. The attacks exist because mod/assign/locallib.php does not properly handle session checking in Assignment's quick-grading, allowing any authenticated user to perform the attacks...

6.8CVSS6.1AI score0.01006EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2014/05/27 12:55 a.m.21 views

CVE-2014-0213

Multiple cross-site request forgery CSRF vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allow remote attackers to hijack the authentication of teachers for quick-grading requests...

6.8CVSS7AI score0.01006EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2014/05/27 12:55 a.m.23 views

CVE-2014-0213

Multiple cross-site request forgery CSRF vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allow remote attackers to hijack the authentication of teachers for quick-grading requests...

6.8CVSS5.9AI score0.01006EPSS
Exploits0References4
prion
prion
added 2014/05/27 12:55 a.m.23 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allow remote attackers to hijack the authentication of teachers for quick-grading requests...

6.8CVSS7.6AI score0.01006EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder