VYPR
High severityNVD Advisory· Published Jul 31, 2019· Updated Aug 4, 2024

CVE-2019-10186

CVE-2019-10186

Description

A flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. A sesskey (CSRF) token was not being utilised by the XML loading/unloading admin tool.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 3.7.0, < 3.7.13.7.1
moodle/moodlePackagist
>= 3.6.0, < 3.6.53.6.5
moodle/moodlePackagist
>= 3.5.0, < 3.5.73.5.7

Affected products

2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.