Description
Cross-site request forgery (CSRF) vulnerability in report/overview/report.php in the quiz module in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to hijack the authentication of arbitrary users for requests that delete quiz attempts via the attemptid parameter.
Remediation
References
Related Vulnerabilities
ownCloud Improper Authentication Vulnerability (CVE-2014-2047)
WordPress Plugin Wow Forms-create any form with custom style SQL Injection (2.1)
Vulnerable package dependencies [medium]
Apache HTTP Server Other Vulnerability (CVE-2001-0731)
PHP Resource Management Errors Vulnerability (CVE-2010-3710)