CVE-2025-3638 – Moodle CSRF in Brickfield Tool

April 25, 2025

CVE ID : CVE-2025-3638

Published : April 25, 2025, 3:15 p.m. | 4 hours, 29 minutes ago

Description : A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the necessary token to prevent a Cross-site request forgery (CSRF) risk.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3637 – Moodle CSRF Information Disclosure

Next Article CVE-2025-32432 (CVSS 10): Craft CMS Hit by Critical RCE Flaw Exploited in the Wild

Highlights

CVE-2025-4025 – iSourcecode Placement Management System SQL Injection

April 28, 2025

CVE ID : CVE-2025-4025

Published : April 28, 2025, 3:15 p.m. | 3 hours, 50 minutes ago

Description : A vulnerability classified as critical was found in itsourcecode Placement Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /registration.php. The manipulation of the argument Name leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I test a lot of AI coding tools, and this stunning new OpenAI release just saved me days of work

How to use your Android phone as a webcam when your laptop’s default won’t cut it

The 5 most customizable Linux desktop environments – when you want it your way

Gen AI use at work saps our motivation even as it boosts productivity, new research shows

Strategic Cloud Partner: Key to Business Success, Not Just Tech

Strategic Cloud Partner: Key to Business Success, Not Just Tech

Perficient’s “What If? So What?” Podcast Wins Gold at the 2025 Hermes Creative Awards

PIM for Azure Resources

Windows 11 24H2’s Settings now bundles FAQs section to tell you more about your system

Windows 11 24H2’s Settings now bundles FAQs section to tell you more about your system

You can now share an app/browser window with Copilot Vision to help you with different tasks

Microsoft will gradually retire SharePoint Alerts over the next two years

CVE-2025-3638 – Moodle CSRF in Brickfield Tool

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-30419 – NI Circuit Design Suite SymbolEditor Out-of-Bounds Read Vulnerability

100 Days of Web Experiments

Pure CSS Logos

Vue Datasource is a Vue.js server side component to create tables

Google Wallet now alerts you to loyalty card benefits you’re missing out on

CVE-2025-4025 – iSourcecode Placement Management System SQL Injection

Building SaaS Website #06: Handling static files

CVE-2025-2543 – WordPress Advanced Accordion Gutenberg Block Stored Cross-Site Scripting

China Attack on U.S. Telecom Networks: â€˜Thousands and Thousandsâ€™ of Devices Need to Be Replaced

CVE-2025-3638 – Moodle CSRF in Brickfield Tool

Related Posts