Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Server-Side Request Forgery (SSRF) Vulnerability - CVE-2023-35133 - Vulnerability Database
Moodle

Moodle Server-Side Request Forgery (SSRF) Vulnerability - CVE-2023-35133

High
Reference: CVE-2023-35133
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-35133
Title: Moodle Server-Side Request Forgery (SSRF) Vulnerability
Overview:

An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2 4.1 to 4.1.3 4.0 to 4.0.8 3.11 to 3.11.14 3.9 to 3.9.21 and earlier unsupported versions.