Description
An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ivory Search-WordPress Search Multiple Cross-Site Scripting Vulnerabilities (5.4)
WordPress Plugin Simple Slider 'New Image' Field Cross-Site Scripting (1.0)
WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (1.8.1)
WebLogic CVE-2016-3505 Vulnerability (CVE-2016-3505)
WordPress Plugin Master Slider-Responsive Touch Slider Cross-Site Scripting (2.7.1)