A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. The "delete badge alignment" functionality did not include the necessary token check to prevent a CSRF risk.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: fedora
Published: 2022-01-25T19:11:12
Updated: 2024-08-02T23:25:39.990Z
Reserved: 2022-01-21T00:00:00
Link: CVE-2022-0335
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-25T20:15:08.903
Modified: 2022-12-21T15:01:19.963
Link: CVE-2022-0335
Redhat
No data.