Multiple open redirect vulnerabilities in Moodle up to and including 2.5.9, 2.6.x prior to 2.6.11, 2.7.x prior to 2.7.8, and 2.8.x prior to 2.8.6 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving an error page that links to a URL from an HTTP Referer header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle 2.5.5 |
||
moodle moodle 2.5.4 |
||
moodle moodle 2.6.7 |
||
moodle moodle 2.6.6 |
||
moodle moodle 2.7.7 |
||
moodle moodle 2.7.6 |
||
moodle moodle 2.8.0 |
||
moodle moodle 2.8.1 |
||
moodle moodle |
||
moodle moodle 2.5.8 |
||
moodle moodle 2.5.1 |
||
moodle moodle 2.5.0 |
||
moodle moodle 2.6.3 |
||
moodle moodle 2.6.2 |
||
moodle moodle 2.7.3 |
||
moodle moodle 2.7.2 |
||
moodle moodle 2.8.4 |
||
moodle moodle 2.8.5 |
||
moodle moodle 2.5.7 |
||
moodle moodle 2.5.6 |
||
moodle moodle 2.6.10 |
||
moodle moodle 2.6.9 |
||
moodle moodle 2.6.8 |
||
moodle moodle 2.6.1 |
||
moodle moodle 2.6.0 |
||
moodle moodle 2.7.1 |
||
moodle moodle 2.7.0 |
||
moodle moodle 2.5.3 |
||
moodle moodle 2.5.2 |
||
moodle moodle 2.6.5 |
||
moodle moodle 2.6.4 |
||
moodle moodle 2.7.5 |
||
moodle moodle 2.7.4 |
||
moodle moodle 2.8.2 |
||
moodle moodle 2.8.3 |