Fedoraproject » Fedora » 37 : Security Vulnerabilities, CVEs, (CSRF)

cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*

CVE-2022-45149

A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.
Max CVSS
5.4
EPSS Score
0.17%
Published
2022-11-23
Updated
2023-01-31
1 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close