Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 prior to 1.7.7, 1.8 prior to 1.8.8, and 1.9 prior to 1.9.4 allows remote malicious users to delete unauthorized forum posts via a link or IMG tag to post.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle 1.7.5 |
||
moodle moodle 1.7.6 |
||
moodle moodle 1.8.5 |
||
moodle moodle 1.9.2 |
||
moodle moodle 1.9.1 |
||
moodle moodle 1.7.3 |
||
moodle moodle 1.7.4 |
||
moodle moodle 1.8.4 |
||
moodle moodle 1.8.6 |
||
moodle moodle 1.7.1 |
||
moodle moodle 1.7.2 |
||
moodle moodle 1.8.2 |
||
moodle moodle 1.8.3 |
||
moodle moodle 1.9.3 |
||
moodle moodle 1.8.1 |
||
moodle moodle 1.8.7 |