Description In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames. Remediation References CVE-2018-1043 Related Vulnerabilities SharePoint CVE-2022-37961 Vulnerability (CVE-2022-37961) WordPress Plugin Quick Contact Form Security Bypass (8.0.1) WordPress Plugin BuddyPress Customer.io Analytics Integration Cross-Site Request Forgery (1.1.6) WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Deletion (1.0.78) WordPress Plugin Live Product Editor for WooCommerce Security Bypass (4.6.2) Severity Medium Classification CVE-2018-1043 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities