Description

course/jumpto.php in Moodle before 1.6.2 does not validate the session key (sesskey) before providing content from arbitrary local URIs, which allows remote attackers to obtain sensitive information via the jump parameter.

Remediation

References

CVE-2006-4943

Related Vulnerabilities

WordPress Plugin WP-Stats-Dashboard SQL Injection (2.9.4)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-3057)

Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33510)

WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Open Redirect (3.7.2.3)

PHP Improper Input Validation Vulnerability (CVE-2015-4598)

Severity

Medium

Classification

CVE-2006-4943

Tags

Missing Update Known Vulnerabilities