Description
The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 triggers duplicate caching of Cascading Style Sheets (CSS) and JavaScript content, which allows remote attackers to bypass intended access restrictions and write to an operating-system temporary directory via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin PayPal Digital Downloads Cross-Site Request Forgery (1.4)
WebLogic CVE-2023-21964 Vulnerability (CVE-2023-21964)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)
Joomla Incorrect Authorization Vulnerability (CVE-2020-11891)
WordPress Plugin Image Export Arbitrary File Download (1.1.0)