Moodle – Open Redirect

Description

Open Redirect arises whenever you have input which you then use to redirect the user. Open Redirection Vulnerability happens when a web application accepts an untrusted input that could cause the web application to redirect the request to a URL contained within untrusted input.

Bussines Impact

An attacker could write a new URL within the application that causes a redirect to a malicious external domain. This vulnerability can be used to perform successful phishing attacks and more.

Recommendation

Updated to the latest version released by moodle.

Reference

https://docs.moodle.org/311/en/Upgrading

Explaining API

We’ve talked about API’s Vulnerability in here, but i feel like there’s much more to talk about and explain since this is a big and

Read More »

SQLI to RCE

How to preform SQLI TO RCE? One of the most interesting and important things about any site is the database. So, it’s important to protect

Read More »