Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Moodle Other Vulnerability (CVE-2015-3175)

Description

Multiple open redirect vulnerabilities in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving an error page that links to a URL from an HTTP Referer header.

Remediation

References

Related Vulnerabilities

Oracle Database Server CVE-2024-21251 Vulnerability (CVE-2024-21251)

MySQL CVE-2019-2683 Vulnerability (CVE-2019-2683)

WordPress Plugin O2Tweet Cross-Site Request Forgery (0.0.4)

Jboss EAP CVE-2022-2764 Vulnerability (CVE-2022-2764)

Jenkins Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1999044)

Severity

Medium

Classification

CVE-2015-3175

Tags

Missing Update Known Vulnerabilities