Moodle SSRF Vulnerability
Moderate severity
GitHub Reviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated Sep 12, 2023
Package
Affected versions
>= 3.3, <= 3.3.3
>= 3.2, <= 3.2.6
>= 3.1, <= 3.1.9
>= 3.4, < 3.4.1
Patched versions
3.3.4
3.2.7
3.1.10
3.4.1
Description
Published by the National Vulnerability Database
Jan 22, 2018
Published to the GitHub Advisory Database
May 14, 2022
Reviewed
Jul 22, 2023
Last updated
Sep 12, 2023
Moodle 3.x has Server Side Request Forgery in the filepicker.
References