VIR Vulnerability Intelligence Relay

CVE-2011-4582

medium
Published 2012-07-20 · Modified 2024-01-17
CVSS v3
CVSS v2
4.9
VIR risk
4.9

Description

Moodle Open Redirect in Calendar Set Page

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://moodle.org/mod/forum/discuss.php?d=191748

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-28720&sr=1

Package impact
EcosystemPackageVulnerableFixed
php Packagistmoodle/moodle>=2.1,<2.1.32.1.3

Application impact
VendorProductVersionsFixed
moodlemoodle2.1.2
moodlemoodle2.1.0
moodlemoodle2.1.1

References

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.