Description
Multiple cross-site request forgery (CSRF) vulnerabilities in (1) editcategories.html and (2) editcategories.php in the Glossary module in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allow remote attackers to hijack the authentication of unspecified victims.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2019-2418 Vulnerability (CVE-2019-2418)
WordPress Plugin Portfolio-WordPress Portfolio Cross-Site Scripting (2.8.10)
WordPress Plugin YITH PayPal Express Checkout for WooCommerce Security Bypass (1.2.5)
PHP Other Vulnerability (CVE-2007-1453)
OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1633)