CVE-2009-0499

Published: Feb 10, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SR:2009:007

vendor-advisory

x_refsource_SUSE

http://cvs.moodle.org/moodle/mod/forum/post.php?r1=1.154.2.14&r2=1.154.2.15

x_refsource_CONFIRM

http://moodle.org/security/

x_refsource_CONFIRM

34418

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20090204 CVS request - Moodle

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-0499

Description

Affected Products

References