๐Ÿ” CVE Alert

CVE-2023-28335

HIGH 8.8

Moodle: csrf risk in resetting all templates of a database activity

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.

CWE CWE-352
Published Mar 23, 2023
Last Updated Aug 2, 2024
Stay Ahead of the Next One

Get instant alerts for

Be the first to know when new high vulnerabilities are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2179424 moodle.org: https://moodle.org/mod/forum/discuss.php?d=445067