CVE-2023-35133 Information

Description

An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2 4.1 to 4.1.3 4.0 to 4.0.8 3.11 to 3.11.14 3.9 to 3.9.21 and earlier unsupported versions.

Reference

https://moodle.org/mod/forum/discuss.php?d=447831