cpe:/a:moodle:moodle:1.9 cpe:/a:moodle:moodle:1.9.1 cpe:/a:moodle:moodle:1.9.2 cpe:/a:moodle:moodle:1.9.3 cpe:/a:moodle:moodle:1.9.4 cpe:/a:moodle:moodle:1.9.5 cpe:/a:moodle:moodle:1.9.6 cpe:/a:moodle:moodle:1.9.7 cpe:/a:moodle:moodle:1.9.8 cpe:/a:moodle:moodle:1.9.9 cpe:/a:moodle:moodle:1.9.10 CVE-2011-4133 2012-07-16T06:28:36.207-04:00 2012-07-16T00:00:00.000-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2012-07-16T09:19:00.000-04:00 MLIST [oss-security] 20111113 Re: Fwd: DSA 2338-1 moodle security update CONFIRM http://git.moodle.org/gw?p=moodle.git;a=commit;h=8f031d5431c1204197b1482fd6c63bc87a19a476 CONFIRM http://moodle.org/mod/forum/discuss.php?d=170002 Cross-site request forgery (CSRF) vulnerability in Moodle 1.9.x before 1.9.11 allows remote attackers to hijack the authentication of unspecified victims for requests that modify an RSS feed in an RSS block.