CVE-2009-0499
Publication date 9 February 2009
Last updated 24 July 2024
Ubuntu priority
Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.
Status
Package | Ubuntu Release | Status |
---|---|---|
moodle | 9.10 karmic |
Not affected
|
9.04 jaunty |
Not affected
|
|
8.10 intrepid |
Fixed 1.8.2-1.2ubuntu2.1
|
|
8.04 LTS hardy |
Fixed 1.8.2-1ubuntu4.2
|
|
7.10 gutsy | Ignored end of life, was needed | |
6.06 LTS dapper | Ignored end of life |