Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2015-5335 - Vulnerability Database
Moodle

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2015-5335

Medium
Reference: CVE-2015-5335
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-5335
Title: Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Cross-site request forgery (CSRF) vulnerability in admin/registration/register.php in Moodle through 2.6.11 2.7.x before 2.7.11 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to hijack the authentication of administrators for requests that send statistics to an arbitrary hub URL.