Moodle – Open Redirect

Description

During the scan, Kayran managed to find an Open Redirect vulnerability inside the Moodle platform.
Open Redirect rises whenever you have input which you then use, in order to redirect the user.
Open Redirection Vulnerability happens when a web application accepts an untrusted\unvalidated input. That could cause the web application to redirect the request to a URL contained within the untrusted input.

An attacker could write a new URL within the application that causes a redirect to malicious, external domains. This vulnerability can be used to perform successful phishing attacks and more.

Recommendation

Update to the latest version released by Moodle.

(link below)

References

https://docs.moodle.org/400/en/Upgrading

< Return to all Vulnerabilities

Active Directory Hacking

What does Active Directory mean? The Active Directory infrastructure is a critical infrastructure in most organizations, and it forms the backbone of the organization’s computing

Read More »

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

Read More »

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »