Description
A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the necessary token to prevent a Cross-site request forgery (CSRF) risk.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2022-21366 Vulnerability (CVE-2022-21366)
PHP Improper Resource Shutdown or Release Vulnerability (CVE-2015-3415)
WordPress Plugin Mapplic-Custom Interactive Map Server-Side Request Forgery (6.1)
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2015-1399)
Apache HTTP Server CVE-2024-40725 Vulnerability (CVE-2024-40725)