Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-10133

Disclosure Date: June 26, 2019 (last updated October 06, 2023)
A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The form to upload cohorts contained a redirect field, which was not restricted to internal URLs.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0