VulnerableCode Vulnerability Details - VCID-wkyw-44v4-77ek

Search for vulnerabilities

Vulnerability details: VCID-wkyw-44v4-77ek

Essentials
Severities (11)
References (10)
Severity details (9)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-wkyw-44v4-77ek
Aliases	CVE-2015-0213 GHSA-hhq7-jf2p-hw9c
Summary	Moodle multiple cross-site request forgery (CSRF) vulnerabilities Multiple cross-site request forgery (CSRF) vulnerabilities in (1) editcategories.html and (2) editcategories.php in the Glossary module in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allow remote attackers to hijack the authentication of unspecified victims.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-352	Cross-Site Request Forgery (CSRF)
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-48106
generic_textual	MODERATE	http://openwall.com/lists/oss-security/2015/01/19/1
epss	0.00126	https://api.first.org/data/v1/epss?cve=CVE-2015-0213
epss	0.00126	https://api.first.org/data/v1/epss?cve=CVE-2015-0213
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-hhq7-jf2p-hw9c
generic_textual	MODERATE	https://github.com/moodle/moodle
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/5770e5147838aa06a3ecdff6fc3aebbbd17fff90
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/c4250ef4f23776ff4862d2860b6be2cf7b2d85f6
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/e83c756f84e16ab70e160e08deb84e9bc4bfbfea
generic_textual	MODERATE	https://moodle.org/mod/forum/discuss.php?d=278613
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2015-0213

Reference id	Reference type	URL
		http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-48106
		http://openwall.com/lists/oss-security/2015/01/19/1
		https://api.first.org/data/v1/epss?cve=CVE-2015-0213
		https://github.com/moodle/moodle
		https://github.com/moodle/moodle/commit/5770e5147838aa06a3ecdff6fc3aebbbd17fff90
		https://github.com/moodle/moodle/commit/c4250ef4f23776ff4862d2860b6be2cf7b2d85f6
		https://github.com/moodle/moodle/commit/e83c756f84e16ab70e160e08deb84e9bc4bfbfea
		https://moodle.org/mod/forum/discuss.php?d=278613
		https://nvd.nist.gov/vuln/detail/CVE-2015-0213
GHSA-hhq7-jf2p-hw9c		https://github.com/advisories/GHSA-hhq7-jf2p-hw9c

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.32896
EPSS Score	0.00126
Published At	June 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-01T12:26:29.937851+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-hhq7-jf2p-hw9c/GHSA-hhq7-jf2p-hw9c.json	36.1.3