A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. The "delete related badge" functionality did not include the necessary token check to prevent a CSRF risk.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: fedora
Published: 2021-11-22T16:00:05
Updated: 2024-08-04T04:03:08.286Z
Reserved: 2021-11-09T00:00:00
Link: CVE-2021-43559
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-11-22T16:15:08.287
Modified: 2022-12-21T15:01:19.963
Link: CVE-2021-43559
Redhat
No data.