CVE-2024-34001
EUVD-2024-163031.05.2024, 20:15
Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| moodle | moodle | 𝑥 < 4.1.10 |
| moodle | moodle | 4.2.0 ≤ 𝑥 < 4.2.7 |
| moodle | moodle | 4.3.0 ≤ 𝑥 < 4.3.4 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| moodle | moodle | 4.0.0 ≤ 𝑥 ≤ 4.3.3 | ADP |
| moodle | moodle | 4.1.0 ≤ 𝑥 ≤ 4.1.9 | ADP |
| moodle | moodle | 4.2.0 ≤ 𝑥 ≤ 4.2.6 | ADP |
Ubuntu Releases
Common Weakness Enumeration