Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-67852)
Description
A flaw was found in Moodle. An open redirect vulnerability in the OAuth login flow allows a remote attacker to redirect users to attacker-controlled pages after they have successfully authenticated. This occurs due to insufficient validation of redirect parameters, which could lead to phishing attacks or information disclosure.