Description

Multiple cross-site request forgery (CSRF) vulnerabilities in mod/wiki/ components in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allow remote attackers to hijack the authentication of arbitrary users for requests that modify wiki data.

Remediation

References

CVE-2011-4298

Related Vulnerabilities

Spring Cloud Gateway Improper Certificate Validation Vulnerability (CVE-2022-22946)

Drupal Core 4.7.x Cross-Site Request Forgery (4.7.0 - 4.7.3)

OpenSSL Resource Management Errors Vulnerability (CVE-2011-4109)

WordPress Plugin WP Mail Log Cross-Site Request Forgery (1.0.1)

Oracle JRE CVE-2023-21835 Vulnerability (CVE-2023-21835)

Severity

Medium

Classification

CVE-2011-4298 CWE-352

Tags

Missing Update Known Vulnerabilities