Description
In Moodle 2.x and 3.x, a CSRF attack is possible that allows attackers to change the "number of courses displayed in the course overview block" configuration setting.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google XML Sitemap for Videos Cross-Site Request Forgery (2.6.1)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1454)
WordPress Plugin Link Library Cross-Site Scripting (5.9.12.29)
WordPress Plugin Limit Attempts by BestWebSoft Multiple Vulnerabilities (1.0.3)