CVE-2009-0499

Publication date 9 February 2009

Last updated 24 July 2024


Ubuntu priority

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
moodle 9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid
Fixed 1.8.2-1.2ubuntu2.1
8.04 LTS hardy
Fixed 1.8.2-1ubuntu4.2
7.10 gutsy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life

References

Related Ubuntu Security Notices (USN)

    • USN-791-1
    • Moodle vulnerabilities
    • 24 June 2009

Other references