CSRF Vulnerability in Moodle 1.9.x Allows Authentication Hijacking for RSS Feed Modification

CSRF Vulnerability in Moodle 1.9.x Allows Authentication Hijacking for RSS Feed Modification

CVE-2011-4133 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in Moodle 1.9.x before 1.9.11 allows remote attackers to hijack the authentication of unspecified victims for requests that modify an RSS feed in an RSS block.

Learn more about our Web Application Penetration Testing UK.