CVE-2015-3272

moderate-risk
Published 2016-02-22

Open redirect vulnerability in the clean_param function in lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving an HTTP Referer header that has a substring match with a local URL.

Do I need to act?

-
0.35% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.4/10 High
NETWORK / LOW complexity

Affected Products (20)

Affected Vendors

Moodle

References (8)

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50688
http://openwall.com/lists/oss-security/2015/07/13/2
http://www.securitytracker.com/id/1032877
Vendor Advisory https://moodle.org/mod/forum/discuss.php?d=316662
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50688
http://openwall.com/lists/oss-security/2015/07/13/2
http://www.securitytracker.com/id/1032877
Vendor Advisory https://moodle.org/mod/forum/discuss.php?d=316662
49
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 1/34 · Minimal
Exposure 22/34 · High