Description Moodle 3.5.x before 3.5.4 allows SSRF. Remediation References CVE-2019-6970 Related Vulnerabilities Magento Improper Input Validation Vulnerability (CVE-2019-7899) WordPress Plugin WP Photo Album Plus Cross-Site Scripting (6.1.2) Python Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2008-1887) Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4592) WordPress Improper Input Validation Vulnerability (CVE-2007-1277) Severity High Classification CVE-2019-6970 CWE-918 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities