Description
Open redirect vulnerability in the clean_param function in lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving an HTTP Referer header that has a substring match with a local URL.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
https://moodle.org/mod/forum/discuss.php?d=316662
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2015/07/13/2
Patch x_refsource_confirm
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50688
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032877
Scores
CVSS v3
7.4
EPSS
0.0035
EPSS Percentile
57.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
Details
Status
published
Products (29)
moodle/moodle
2.6.0
moodle/moodle
2.6.1
moodle/moodle
2.6.2
moodle/moodle
2.6.3
moodle/moodle
2.6.4
moodle/moodle
2.6.5
moodle/moodle
2.6.6
moodle/moodle
2.6.7
moodle/moodle
2.6.8
moodle/moodle
2.6.9
... and 19 more
Published
Feb 22, 2016
Tracked Since
Feb 18, 2026