Moodle 3.x has Server Side Request Forgery in the filepicker.Referenceshttps://moodle.org/mod/forum/discuss.php?d=364381http://www.securityfocus.com/bid/102752http://packetstormsecurity.com/files/153766/Moodle-Filepicker-3.5.2-Server-Side-Request-Forgery.html
