Moodle Script Insertion and Cross-Site Request Forgery

Moodle Script Insertion and Cross-Site Request Forgery
BugsAlert Home > Moodle Script Insertion and Cross-Site Request Forgery




ProCheckUp Ltd have reported two vulnerabilities in Moodle, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to conduct cross-site request forgery attacks. Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. Original Source: http://secunia.com/advisories/31196/ Learn more about Moodle Script Insertion and Cross-Site Request Forgery


Tags: moodle script insertion cross-site request forgery

Related Items
MS08-069 ? Critical: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (955218) - Version:1.0
TROJ_PATCH.CD
filestat.c errors
Brief: Second bill tackles laptop border searches
Vuln: Amber Script Show_Content.PHP Local File Include Vulnerability
FrSIRT - Fedora Security Update Fixes Blender Untrusted Search Path Issue
Elastic Path Multiple Directory Traversal Vulnerabilities