exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2022-45149

почти 3 года назад

A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.

CVSS3: 5.4

EPSS: Низкий

CVE-2022-45149

почти 3 года назад

CVSS3: 5.4

EPSS: Низкий

CVE-2022-45149

почти 3 года назад

A vulnerability was found in Moodle which exists due to insufficient v ...

CVSS3: 5.4

EPSS: Низкий

GHSA-8v23-w4w5-w83c

почти 3 года назад

Cross-Site Request Forgery in Moodle

CVSS3: 5.4

EPSS: Низкий

BDU:2022-07405

почти 3 года назад

Уязвимость системы управления курсами Moodle, связанная с недостаточной проверкой источника HTTP-запроса в URL-адресе перенаправления курса, позволяющая нарушителю выполнять атаки с подделкой межсайтовых запросов

CVSS3: 5.4

EPSS: Низкий

ROS-20221222-03

почти 3 года назад

Множественные уязвимости moodle

CVSS3: 9.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-45149 A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.	CVSS3: 5.4	0% Низкий	почти 3 года назад
CVE-2022-45149 A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.	CVSS3: 5.4	0% Низкий	почти 3 года назад
CVE-2022-45149 A vulnerability was found in Moodle which exists due to insufficient v ...	CVSS3: 5.4	0% Низкий	почти 3 года назад
GHSA-8v23-w4w5-w83c Cross-Site Request Forgery in Moodle	CVSS3: 5.4	0% Низкий	почти 3 года назад
BDU:2022-07405 Уязвимость системы управления курсами Moodle, связанная с недостаточной проверкой источника HTTP-запроса в URL-адресе перенаправления курса, позволяющая нарушителю выполнять атаки с подделкой межсайтовых запросов	CVSS3: 5.4	0% Низкий	почти 3 года назад
ROS-20221222-03 Множественные уязвимости moodle	CVSS3: 9.1		почти 3 года назад

Уязвимостей на страницу