cpe:/a:moodle:moodle:1.1.1 cpe:/a:moodle:moodle:1.2 cpe:/a:moodle:moodle:1.2.1 cpe:/a:moodle:moodle:1.3 cpe:/a:moodle:moodle:1.3.1 cpe:/a:moodle:moodle:1.3.2 cpe:/a:moodle:moodle:1.3.3 cpe:/a:moodle:moodle:1.3.4 cpe:/a:moodle:moodle:1.4.1 cpe:/a:moodle:moodle:1.4.2 cpe:/a:moodle:moodle:1.4.3 cpe:/a:moodle:moodle:1.4.4 cpe:/a:moodle:moodle:1.4.5 cpe:/a:moodle:moodle:1.5 cpe:/a:moodle:moodle:1.5:beta cpe:/a:moodle:moodle:1.5.1 cpe:/a:moodle:moodle:1.5.2 cpe:/a:moodle:moodle:1.5.3 cpe:/a:moodle:moodle:1.6 cpe:/a:moodle:moodle:1.6.1 cpe:/a:moodle:moodle:1.6.2 cpe:/a:moodle:moodle:1.6.3 cpe:/a:moodle:moodle:1.6.4 cpe:/a:moodle:moodle:1.6.5 cpe:/a:moodle:moodle:1.6.6 cpe:/a:moodle:moodle:1.6.7 cpe:/a:moodle:moodle:1.6.8 cpe:/a:moodle:moodle:1.7 cpe:/a:moodle:moodle:1.7.1 cpe:/a:moodle:moodle:1.7.2 cpe:/a:moodle:moodle:1.7.3 cpe:/a:moodle:moodle:1.7.4 cpe:/a:moodle:moodle:1.7.5 cpe:/a:moodle:moodle:1.7.6 cpe:/a:moodle:moodle:1.8 cpe:/a:moodle:moodle:1.8.1 cpe:/a:moodle:moodle:1.8.2 cpe:/a:moodle:moodle:1.8.3 cpe:/a:moodle:moodle:1.8.4 cpe:/a:moodle:moodle:1.8.5 cpe:/a:moodle:moodle:1.8.6 cpe:/a:moodle:moodle:1.8.7 cpe:/a:moodle:moodle:1.8.8 cpe:/a:moodle:moodle:1.8.9 cpe:/a:moodle:moodle:1.8.10 cpe:/a:moodle:moodle:1.8.11 cpe:/a:moodle:moodle:1.8.12 cpe:/a:moodle:moodle:1.9 cpe:/a:moodle:moodle:1.9.1 cpe:/a:moodle:moodle:1.9.2 cpe:/a:moodle:moodle:1.9.3 cpe:/a:moodle:moodle:1.9.4 cpe:/a:moodle:moodle:1.9.5 cpe:/a:moodle:moodle:1.9.6 cpe:/a:moodle:moodle:1.9.7 cpe:/a:moodle:moodle:1.9.8 CVE-2010-2231 2010-06-28T13:30:01.280-04:00 2010-09-09T01:42:34.850-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-06-29T10:14:00.000-04:00 ALLOWS_OTHER_ACCESS SECUNIA 40248 SECUNIA 40352 VUPEN ADV-2010-1530 VUPEN ADV-2010-1571 FEDORA FEDORA-2010-10286 FEDORA FEDORA-2010-10291 FEDORA FEDORA-2010-10321 SUSE SUSE-SR:2010:014 MLIST [oss-security] 20100621 Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities CONFIRM http://cvs.moodle.org/moodle/mod/quiz/report/overview/report.php?r1=1.98.2.50&r2=1.98.2.51 CONFIRM http://docs.moodle.org/en/Moodle_1.8.13_release_notes CONFIRM http://docs.moodle.org/en/Moodle_1.9.9_release_notes CONFIRM http://moodle.org/mod/forum/discuss.php?d=152369 CONFIRM http://tracker.moodle.org/browse/MDL-21688 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=605809 Cross-site request forgery (CSRF) vulnerability in report/overview/report.php in the quiz module in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to hijack the authentication of arbitrary users for requests that delete quiz attempts via the attemptid parameter.