Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2024-43434 - Vulnerability Database
Moodle

Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2024-43434

High
Reference: CVE-2024-43434
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-43434
Title: Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

The bulk message sending feature in Moodle39s Feedback module39s non-respondents report had an incorrect CSRF token check leading to a CSRF vulnerability.