Upstream information

CVE-2009-0499 at MITRE

Description

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 6.4
Vector AV:N/AC:L/Au:N/C:N/I:P/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact Partial
Availability Impact Partial
SUSE Bugzilla entry: 475111 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.0
  • moodle-debuginfo >= 1.9.0-24.6
openSUSE 11.0
  • moodle >= 1.9.0-24.6
  • moodle-af >= 1.9.0-24.6
  • moodle-ar >= 1.9.0-24.6
  • moodle-be >= 1.9.0-24.6
  • moodle-bg >= 1.9.0-24.6
  • moodle-bs >= 1.9.0-24.6
  • moodle-ca >= 1.9.0-24.6
  • moodle-cs >= 1.9.0-24.6
  • moodle-da >= 1.9.0-24.6
  • moodle-de >= 1.9.0-24.6
  • moodle-de_du >= 1.9.0-24.6
  • moodle-el >= 1.9.0-24.6
  • moodle-es >= 1.9.0-24.6
  • moodle-et >= 1.9.0-24.6
  • moodle-eu >= 1.9.0-24.6
  • moodle-fa >= 1.9.0-24.6
  • moodle-fi >= 1.9.0-24.6
  • moodle-fr >= 1.9.0-24.6
  • moodle-ga >= 1.9.0-24.6
  • moodle-gl >= 1.9.0-24.6
  • moodle-he >= 1.9.0-24.6
  • moodle-hi >= 1.9.0-24.6
  • moodle-hr >= 1.9.0-24.6
  • moodle-hu >= 1.9.0-24.6
  • moodle-id >= 1.9.0-24.6
  • moodle-is >= 1.9.0-24.6
  • moodle-it >= 1.9.0-24.6
  • moodle-ja >= 1.9.0-24.6
  • moodle-ka >= 1.9.0-24.6
  • moodle-km >= 1.9.0-24.6
  • moodle-kn >= 1.9.0-24.6
  • moodle-ko >= 1.9.0-24.6
  • moodle-lt >= 1.9.0-24.6
  • moodle-lv >= 1.9.0-24.6
  • moodle-mi_tn >= 1.9.0-24.6
  • moodle-ms >= 1.9.0-24.6
  • moodle-nl >= 1.9.0-24.6
  • moodle-nn >= 1.9.0-24.6
  • moodle-no >= 1.9.0-24.6
  • moodle-pl >= 1.9.0-24.6
  • moodle-pt >= 1.9.0-24.6
  • moodle-ro >= 1.9.0-24.6
  • moodle-ru >= 1.9.0-24.6
  • moodle-sk >= 1.9.0-24.6
  • moodle-sl >= 1.9.0-24.6
  • moodle-so >= 1.9.0-24.6
  • moodle-sq >= 1.9.0-24.6
  • moodle-sr >= 1.9.0-24.6
  • moodle-sv >= 1.9.0-24.6
  • moodle-th >= 1.9.0-24.6
  • moodle-tl >= 1.9.0-24.6
  • moodle-tr >= 1.9.0-24.6
  • moodle-uk >= 1.9.0-24.6
  • moodle-vi >= 1.9.0-24.6
  • moodle-zh_cn >= 1.9.0-24.6
openSUSE 11.1
  • moodle-debuginfo >= 1.9.3-1.11.1
openSUSE 11.1
  • moodle >= 1.9.3-1.11.1
  • moodle-af >= 1.9.3-1.11.1
  • moodle-ar >= 1.9.3-1.11.1
  • moodle-be >= 1.9.3-1.11.1
  • moodle-bg >= 1.9.3-1.11.1
  • moodle-bs >= 1.9.3-1.11.1
  • moodle-ca >= 1.9.3-1.11.1
  • moodle-cs >= 1.9.3-1.11.1
  • moodle-da >= 1.9.3-1.11.1
  • moodle-de >= 1.9.3-1.11.1
  • moodle-de_du >= 1.9.3-1.11.1
  • moodle-el >= 1.9.3-1.11.1
  • moodle-es >= 1.9.3-1.11.1
  • moodle-et >= 1.9.3-1.11.1
  • moodle-eu >= 1.9.3-1.11.1
  • moodle-fa >= 1.9.3-1.11.1
  • moodle-fi >= 1.9.3-1.11.1
  • moodle-fr >= 1.9.3-1.11.1
  • moodle-ga >= 1.9.3-1.11.1
  • moodle-gl >= 1.9.3-1.11.1
  • moodle-he >= 1.9.3-1.11.1
  • moodle-hi >= 1.9.3-1.11.1
  • moodle-hr >= 1.9.3-1.11.1
  • moodle-hu >= 1.9.3-1.11.1
  • moodle-id >= 1.9.3-1.11.1
  • moodle-is >= 1.9.3-1.11.1
  • moodle-it >= 1.9.3-1.11.1
  • moodle-ja >= 1.9.3-1.11.1
  • moodle-ka >= 1.9.3-1.11.1
  • moodle-km >= 1.9.3-1.11.1
  • moodle-kn >= 1.9.3-1.11.1
  • moodle-ko >= 1.9.3-1.11.1
  • moodle-lt >= 1.9.3-1.11.1
  • moodle-lv >= 1.9.3-1.11.1
  • moodle-mi_tn >= 1.9.3-1.11.1
  • moodle-ms >= 1.9.3-1.11.1
  • moodle-nl >= 1.9.3-1.11.1
  • moodle-nn >= 1.9.3-1.11.1
  • moodle-no >= 1.9.3-1.11.1
  • moodle-pl >= 1.9.3-1.11.1
  • moodle-pt >= 1.9.3-1.11.1
  • moodle-ro >= 1.9.3-1.11.1
  • moodle-ru >= 1.9.3-1.11.1
  • moodle-sk >= 1.9.3-1.11.1
  • moodle-sl >= 1.9.3-1.11.1
  • moodle-so >= 1.9.3-1.11.1
  • moodle-sq >= 1.9.3-1.11.1
  • moodle-sr >= 1.9.3-1.11.1
  • moodle-sv >= 1.9.3-1.11.1
  • moodle-th >= 1.9.3-1.11.1
  • moodle-tl >= 1.9.3-1.11.1
  • moodle-tr >= 1.9.3-1.11.1
  • moodle-uk >= 1.9.3-1.11.1
  • moodle-vi >= 1.9.3-1.11.1
  • moodle-zh_cn >= 1.9.3-1.11.1