CVE-2023-28335

Опубликовано: 23 мар. 2023

Источник: ubuntu

Приоритет: medium

CVSS3: 8.8

Описание

The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
esm-apps/bionic	needs-triage
esm-apps/xenial	needs-triage
esm-infra/focal	DNE
focal	DNE
jammy	DNE
kinetic	DNE
trusty	ignored	end of standard support
upstream	needs-triage
xenial	ignored	end of standard support

Показывать по

8.8 High

CVSS3

CVE-2023-28335

CVSS3: 8.8

nvd

около 2 лет назад

The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.

CVE-2023-28335

CVSS3: 8.8

debian

около 2 лет назад

The link to reset all templates of a database activity did not include ...

GHSA-wxmq-v9gx-75pg

CVSS3: 8.8

github

около 2 лет назад

Moodle vulnerable to Cross-site Request Forgery

8.8 High

CVSS3