Description
Multiple cross-site request forgery (CSRF) vulnerabilities in (1) editcategories.html and (2) editcategories.php in the Glossary module in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allow remote attackers to hijack the authentication of unspecified victims.
Remediation
References
Related Vulnerabilities
WordPress Plugin FCChat Widget 'path' Parameter Cross-Site Scripting (2.1.7)
WordPress Plugin GS Filterable Portfolio Cross-Site Scripting (1.6.0)
WordPress Plugin Gallery-Flagallery Photo Portfolio Cross-Site Request Forgery (3.01)
Magento CVE-2019-8122 Vulnerability (CVE-2019-8122)
Magento Improper Input Validation Vulnerability (CVE-2015-6497)