Topic: | CSRF in several places |
Severity: | Serious |
Versions affected: | < 2.1.2, < 2.0.5 (1.9.x not affected) |
Reported by: | Petr Škoda |
Issue no.: | MDL-28724 |
Solution: | upgrade to latest version |
Changes (master): | http://git.moodle.org/gw?p=moodle.git;a=commit;h=48346fb11f8ced06a05c0618b02a3a925b34ec59 |
Description:
This vulnerability allowed cross site reference forgery within links in the Wiki.