Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-2157

Опубликовано: 22 мая 2016
Источник: debian
EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodlefixed2.7.13+dfsg-1package

EPSS

Процентиль: 37%
0.00156
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-2157

CVSS3: 8.8
ubuntu
около 9 лет назад

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

nvd логотип

CVE-2016-2157

CVSS3: 8.8
nvd
около 9 лет назад

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

github логотип

GHSA-f5pm-c4cw-563p

CVSS3: 8.8
github
около 3 лет назад

Moodle cross-site request forgery (CSRF) vulnerability

EPSS

Процентиль: 37%
0.00156
Низкий