Vulnerability CVE-2023-35133
Published: 2023-06-22

Description:
An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.

 References:
https://moodle.org/mod/forum/discuss.php?d=447831
Copyright 2026, cxsecurity.com

 

Back to Top