Description

Cross-site request forgery (CSRF) vulnerability in Moodle 1.9.x before 1.9.11 allows remote attackers to hijack the authentication of unspecified victims for requests that modify an RSS feed in an RSS block.

Remediation

References

CVE-2011-4133

Related Vulnerabilities

WordPress Plugin HUSKY-Products Filter Professional for WooCommerce Unspecified Vulnerability (1.2.6.1)

Apache HTTP Server Session Fixation Vulnerability (CVE-2001-1534)

MySQL CVE-2018-3161 Vulnerability (CVE-2018-3161)

ownCloud Improper Authentication Vulnerability (CVE-2016-9463)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-28034)

Severity

Medium

Classification

CVE-2011-4133 CWE-352

Tags

Missing Update Known Vulnerabilities