CVE-2022-2986

Summary

Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.

Affected Software

VendorProductVersion RangeStatus
n/amoodlemoodle 4.0.3 and moodle 3.11.9affected

Weaknesses

  • CSRF

ADP Enrichment

CVE Program Container

Additional References

References