CVE-2017-7491

Summary

In Moodle 2.x and 3.x, a CSRF attack is possible that allows attackers to change the "number of courses displayed in the course overview block" configuration setting.

Affected Software

VendorProductVersion RangeStatus
n/aMoodle 2.x and 3.xMoodle 2.x and 3.xaffected

Weaknesses

  • CSRF

ADP Enrichment

CVE Program Container

Additional References

References