Description

lib/formslib.php in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 does not properly handle multiple instances of a form element, which has unspecified impact and remote attack vectors.

Remediation

References

CVE-2012-0801

Related Vulnerabilities

WordPress Plugin Buddy Share It Allusers FB YR Arbitrary File Upload (3.2.8)

Joomla! Core 1.6.x Multiple Cross-Site Scripting Vulnerabilities (1.6.0 - 1.6.3)

Jboss EAP Reachable Assertion Vulnerability (CVE-2020-25710)

TYPO3 Files or Directories Accessible to External Parties Vulnerability (CVE-2021-21355)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Request Forgery (2.0.6)

Severity

High

Classification

CVE-2012-0801 CWE-20

Tags

Missing Update Known Vulnerabilities