Unrated severityNVD Advisory· Published Mar 19, 2021· Updated Aug 5, 2024
CVE-2019-14831
CVE-2019-14831
Description
A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where forum subscribe link contained an open redirect if forced subscription mode was enabled. If a forum's subscription mode was set to "forced subscription", the forum's subscribe link contained an open redirect.
Affected products
2- Moodle/Moodledescription
Patches
Vulnerability mechanics
References
2- git.moodle.org/gwmitrex_refsource_MISC
- moodle.org/mod/forum/discuss.phpmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.