Lucene search
Veracode Vulnerability DatabaseVERACODE:4703HistoryJul 26, 2017 - 7:42 p.m.
Cross-site Request Forgery (CSRF)
2017-07-2619:42:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
EPSS
0.002
Percentile
52.7%
Moodle is vulnerable to cross-site request forgery (CSRF) attacks. Leveraging a flaw in mod/assign/adminmanageplugins.php, attackers can hijack the authentication of administrators through requests that manage the Assignment plugins.
Related
cvelist
cvelist
CVE-2016-2157
2016-05-22 20:00:00
nvd
nvd
CVE-2016-2157
2016-05-22 20:59:06
github
github
Moodle cross-site request forgery (CSRF) vulnerability
2022-05-13 01:12:38
prion
prion
Cross site request forgery (csrf)
2016-05-22 20:59:00
osv
osv
Moodle cross-site request forgery (CSRF) vulnerability
2022-05-13 01:12:38
cve
cve
CVE-2016-2157
2016-05-22 20:59:06
ubuntucve
ubuntucve
CVE-2016-2157
2016-05-22 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: moodle-2.8.11-1.fc22
2016-03-30 21:25:40
[SECURITY] Fedora 23 Update: moodle-2.9.5-1.fc23
2016-03-30 21:01:09
[SECURITY] Fedora 24 Update: moodle-3.0.3-1.fc24
2016-03-27 00:43:27
nessus
nessus
Moodle < 2.7.13 / 2.8.x < 2.8.11 / 2.9.x < 2.9.5 / 3.0.x < 3.0.3 Multiple Vulnerabilities
2016-04-08 00:00:00
Fedora 23 : moodle-2.9.5-1.fc23 (2016-403715aaec)
2016-04-01 00:00:00
freebsd
freebsd
moodle -- multiple vulnerabilities
2016-03-21 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0122)
2016-03-31 00:00:00
Fedora Update for moodle FEDORA-2016-9
2016-04-11 00:00:00
Fedora Update for moodle FEDORA-2016-403715
2016-04-11 00:00:00
mageia
mageia
Updated moodle packages fix security vulnerability
2016-03-25 09:38:37