Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4582

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2011-4582
Last Modified 23 Jul 2012 12:00:00
Published 20 Jul 2012 06:40:35
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2011-4582

Summary

Open redirect vulnerability in the Calendar set page in Moodle 2.1.x before 2.1.3 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a redirection URL.

Vulnerable Systems

Application

  • Moodle 2.1

  • Moodle 2.1.1

  • Moodle 2.1.2


References

CONFIRM - http://moodle.org/mod/forum/discuss.php?d=191748

CONFIRM - http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-28720&sr=1

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=761248


Last Updated: 27 May 2016 10:54:56