Description
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames.
Remediation
References
Related Vulnerabilities
WordPress Plugin Breezing Forms Cross-Site Scripting (1.2.7.42)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-46148)
MySQL CVE-2020-2679 Vulnerability (CVE-2020-2679)
WordPress Plugin Xtreme Locator Dealer Locator SQL Injection (1.5)
WordPress Plugin CONTUS VBLOG-Video Blogging 'save.php' Arbitrary File Upload (1.0)