CSV Export Vulnerability in Moodle Versions 3.8 to 3.10.3

CSV Export Vulnerability in Moodle Versions 3.8 to 3.10.3

CVE-2021-32472 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Teachers exporting a forum in CSV format could receive a CSV of forums from all courses in some circumstances. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6 and 3.8 to 3.8.8 are affected.

Learn more about our Web Application Penetration Testing UK.