CVE-2024-38276
Description
Incorrect CSRF token checks resulted in multiple CSRF risks.
CWE
- CWE-352 — CWE-352
Affected
- Moodle / Moodle — v=4.4 [affected]; v=4.3 ≤4.3.4 [affected]; v=4.2 ≤4.2.7 [affected]; v=4.1 ≤4.1.10 [affected]
CVSS
- (none)
References
- https://moodle.org/mod/forum/discuss.php?d=459501
- https://lists.fedoraproject.org/archives/list/[email protected]/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
Source
cvelistV5-main/cves/2024/38xxx/CVE-2024-38276.json