VYPR
Moderate severityNVD Advisory· Published Jun 26, 2019· Updated Aug 4, 2024

CVE-2019-10133

CVE-2019-10133

Description

A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The form to upload cohorts contained a redirect field, which was not restricted to internal URLs.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 3.6.0, < 3.6.43.6.4
moodle/moodlePackagist
>= 3.5.0, < 3.5.63.5.6
moodle/moodlePackagist
>= 3.4.0, < 3.4.93.4.9
moodle/moodlePackagist
< 3.1.183.1.18

Affected products

2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.