Headline
GHSA-wxmq-v9gx-75pg: Moodle vulnerable to Cross-site Request Forgery
The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.
Moodle vulnerable to Cross-site Request Forgery
Moderate severity GitHub Reviewed Published Mar 23, 2023 to the GitHub Advisory Database • Updated Mar 23, 2023
Related news
CVE-2023-28335
The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.