Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2012-6101

Multiple open redirect vulnerabilities in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors related to (1) backup/backupfilesedit.php, (2) comment/comment_post.php, (3) course/switchrole.php, (4) mod/wiki/filesedit.php, (5) tag/coursetags_add.php, or (6) user/files.php.

  • Published: Jan 27, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-6101
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs:

Software From Fixed in
moodle / moodle 2.2.2 2.2.2.x
moodle / moodle 2.2.6 2.2.6.x
moodle / moodle 2.2.1 2.2.1.x
moodle / moodle 2.2.3 2.2.3.x
moodle / moodle 2.2.5 2.2.5.x
moodle / moodle 2.2.4 2.2.4.x
moodle / moodle 2.2.0 2.2.0.x
moodle / moodle 2.3.1 2.3.1.x
moodle / moodle 2.3.3 2.3.3.x
moodle / moodle 2.3.2 2.3.2.x
moodle / moodle 2.3.0 2.3.0.x
moodle / moodle 2.4.0 2.4.0.x