Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2009-0499

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

  • Published: Feb 10, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-0499
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:L/Au:N/C:N/I:P/A:P

CWEs:

Software From Fixed in
moodle / moodle 1.9.1 1.9.1.x
moodle / moodle 1.8.2 1.8.2.x
moodle / moodle 1.7.6 1.7.6.x
moodle / moodle 1.9.2 1.9.2.x
moodle / moodle 1.8.6 1.8.6.x
moodle / moodle 1.7.1 1.7.1.x
moodle / moodle 1.8.5 1.8.5.x
moodle / moodle 1.8.3 1.8.3.x
moodle / moodle 1.8.7 1.8.7.x
moodle / moodle 1.9.3 1.9.3.x
moodle / moodle 1.7.3 1.7.3.x
moodle / moodle 1.7.2 1.7.2.x
moodle / moodle 1.7.5 1.7.5.x
moodle / moodle 1.8.4 1.8.4.x
moodle / moodle 1.8.1 1.8.1.x
moodle / moodle 1.7.4 1.7.4.x