Show filters
33 Total Results
Displaying 31-33 of 33
Sort by:
Attacker Value
Unknown

CVE-2009-0499

Disclosure Date: February 10, 2009 (last updated October 04, 2023)
Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.
0
0
Attacker Value
Unknown

CVE-2009-0502

Disclosure Date: February 10, 2009 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in blocks/html/block_html.php in Snoopy 1.2.3, as used in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4, allows remote attackers to inject arbitrary web script or HTML via an HTML block, which is not properly handled when the "Login as" feature is used to visit a MyMoodle or Blog page.
0
0
Attacker Value
Unknown

CVE-2008-5432

Disclosure Date: December 11, 2008 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).
0
0
View More Topics  < Previous