CVE-2015-0213

Published: Jun 1, 2015Modified: May 6, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in (1) editcategories.html and (2) editcategories.php in the Glossary module in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allow remote attackers to hijack the authentication of unspecified victims.

Affected (22)

Products: Moodle: Moodle

Moodle

1 product

Moodle

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Moodle Moodle	Up to 2.5.9
Moodle Moodle	Version 2.5.0
Moodle Moodle	Version 2.5.1
Moodle Moodle	Version 2.5.2
Moodle Moodle	Version 2.5.3
Moodle Moodle	Version 2.5.4
Moodle Moodle	Version 2.5.5
Moodle Moodle	Version 2.5.6
Moodle Moodle	Version 2.5.7
Moodle Moodle	Version 2.5.8
Moodle Moodle	Version 2.6.0
Moodle Moodle	Version 2.6.1
Moodle Moodle	Version 2.6.2
Moodle Moodle	Version 2.6.3
Moodle Moodle	Version 2.6.4
Moodle Moodle	Version 2.6.5
Moodle Moodle	Version 2.6.6
Moodle Moodle	Version 2.7.0
Moodle Moodle	Version 2.7.1
Moodle Moodle	Version 2.7.2
Moodle Moodle	Version 2.7.3
Moodle Moodle	Version 2.8.0