Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-3635)
Description
A security vulnerability was discovered in Moodle that allows anyone to duplicate existing tours without needing to log in due to a lack of protection against cross-site request forgery (CSRF) attacks.