Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Input Validation Vulnerability - CVE-2011-4294 - Vulnerability Database
Moodle

Moodle Improper Input Validation Vulnerability - CVE-2011-4294

Medium
Reference: CVE-2011-4294
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-4294
Title: Moodle Improper Input Validation Vulnerability
Overview:

The error-message functionality in Moodle 1.9.x before 1.9.13 2.0.x before 2.0.4 and 2.1.x before 2.1.1 does not ensure that a continuation link refers to an http or https URL for the local Moodle instance which might allow attackers to trick users into visiting arbitrary web sites via unspecified vectors.