Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-2157

Опубликовано: 22 мая 2016
Источник: debian

Описание

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodlefixed2.7.13+dfsg-1package

Связанные уязвимости

ubuntu логотип

CVE-2016-2157

CVSS3: 8.8
ubuntu
больше 9 лет назад

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

nvd логотип

CVE-2016-2157

CVSS3: 8.8
nvd
больше 9 лет назад

Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.

github логотип

GHSA-f5pm-c4cw-563p

CVSS3: 8.8
github
больше 3 лет назад

Moodle cross-site request forgery (CSRF) vulnerability