Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Moodle 2.0.x before 2.0.2 allow remote attackers to hijack the authentication of arbitrary users for requests that mark the completion of (1) an activity or (2) a course.

Remediation

References

CVE-2011-4281

Related Vulnerabilities

Moodle Other Vulnerability (CVE-2006-6626)

MySQL CVE-2018-2805 Vulnerability (CVE-2018-2805)

WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)

MediaWiki Incorrect Default Permissions Vulnerability (CVE-2021-44858)

WordPress Plugin Filedownload Multiple Vulnerabilities (1.4)

Severity

Medium

Classification

CVE-2011-4281 CWE-352

Tags

Missing Update Known Vulnerabilities