EPSS
Percentile
33.4%
Moodle is vulnerable to cross-site request forgery (CSRF) attacks. The attacks are possible because it does not prevent the attackers to make a trick to the administrator site registration by displaying correct URL and registering to another hub.
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51091
www.securityfocus.com/bid/77612
git.moodle.org/gw?p=moodle.git;a=commit;h=4bb9e1ad8af12b01499c68543e80f7c12fd557ea
moodle.org/mod/forum/discuss.php?d=323230