CVE-2024-38276
June 18, 2024, 8:15 p.m.
Tags
Product(s) Impacted
UNKNOWN
Description
Incorrect CSRF token checks resulted in multiple CSRF risks.
Weaknesses
CWE-352
Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
CWE ID: 352Date
Published: June 18, 2024, 8:15 p.m.
Last Modified: June 18, 2024, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
patrick@puiterwijk.org
References
https://moodle.org/
patrick@puiterwijk.org