Description

Cross-site request forgery (CSRF) vulnerability in Moodle 1.9.x before 1.9.11 allows remote attackers to hijack the authentication of unspecified victims for requests that modify an RSS feed in an RSS block.

Remediation

References

CVE-2011-4133

Related Vulnerabilities

Drupal Core 5.x Local File Inclusion (5.0 - 5.15)

WordPress Plugin Content Audit Multiple Vulnerabilities (1.9.1)

WordPress Plugin Popup, Optin Form & Email Newsletters for Mailchimp, HubSpot, Aweber-MailOptin Security Bypass (1.2.35.1)

Envoy Proxy Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-11767)

Internet Information Services CVE-2008-0074 Vulnerability (CVE-2008-0074)

Severity

Medium

Classification

CVE-2011-4133 CWE-352

Tags

Missing Update Known Vulnerabilities