Description
iplookup/index.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote attackers to cause a denial of service (resource consumption) by triggering the calculation of an estimated latitude and longitude for an IP address.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slider Hero with Animation, Video Background Cross-Site Scripting (8.4.3)
WordPress Plugin iQ Block Country Unspecified Vulnerability (1.1.33)
WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.6)
WordPress Plugin Product Catalog Arbitrary File Upload (3.8.6)
WordPress Plugin MC4WP:Mailchimp for WordPress Cross-Site Scripting (4.0.10)