GHSA-jcrj-x36p-h9f6
Suggest an improvement- Source
- https://github.com/advisories/GHSA-jcrj-x36p-h9f6
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-jcrj-x36p-h9f6/GHSA-jcrj-x36p-h9f6.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-jcrj-x36p-h9f6
- Aliases
-
- CVE-2011-4582
- Published
- 2022-05-13T01:13:15Z
- Modified
- 2024-01-17T18:41:36.746504Z
- Summary
- Moodle Open Redirect in Calendar Set Page
- Details
-
Open redirect vulnerability in the Calendar set page in Moodle 2.1.x before 2.1.3 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a redirection URL.
- Database specific
{ "nvd_published_at": "2012-07-20T10:40:00Z", "cwe_ids": [ "CWE-601" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2024-01-17T18:26:35Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2011-4582
- https://github.com/moodle/moodle/commit/0d2672748c00181d9cdae2aabbab916cbd64c47d
- https://github.com/moodle/moodle/commit/21e7d4c5fc9cc5df54c9c7d82190f1339d163a9e
- https://github.com/moodle/moodle/commit/7f422374c101dcb0affdd5127b855671af4f3748
- https://github.com/moodle/moodle/commit/eb59a448f7879d69b21fcde7f1fcddd69655e045
- https://bugzilla.redhat.com/show_bug.cgi?id=761248
- https://github.com/moodle/moodle
- http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-28720&sr=1
- http://moodle.org/mod/forum/discuss.php?d=191748
Affected packages
Packagist / moodle/moodle
Package
- Name
- moodle/moodle
- Purl
- pkg:composer/moodle/moodle