Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-wxmq-v9gx-75pg: Moodle vulnerable to Cross-site Request Forgery

The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.

ghsa
#csrf#git

Moodle vulnerable to Cross-site Request Forgery

Moderate severity GitHub Reviewed Published Mar 23, 2023 to the GitHub Advisory Database • Updated Mar 23, 2023

Related news

CVE-2023-28335

The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.