Description Moodle 3.x has Server Side Request Forgery in the filepicker. Remediation References CVE-2018-1042 Related Vulnerabilities WordPress Plugin Contact Form 7-PayPal Add-on Cross-Site Request Forgery (1.3.4) OpenSSL Improper Authentication Vulnerability (CVE-2009-0653) Oracle Database Server Other Vulnerability (CVE-2007-1442) Oracle Database Server CVE-2011-2243 Vulnerability (CVE-2011-2243) MySQL CVE-2015-4870 Vulnerability (CVE-2015-4870) Severity Medium Classification CVE-2018-1042 CWE-918 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities