CVE-2025-4513 | Catalyst User Key Authentication Plugin 20220819 on Moodle Logout /auth/userkey/logout.php return redirect

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability classified as problematic was found in Catalyst User Key Authentication Plugin 20220819 on Moodle. Affected by this vulnerability is an unknown functionality of the file /auth/userkey/logout.php of the component Logout. The manipulation of the argument return leads to open redirect.

This vulnerability is known as CVE-2025-4513. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-4513 | Catalyst User Key Authentication Plugin 20220819 on Moodle Logout /auth/userkey/logout.php return redirect

Post correlati

CVE-2024-5188 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.22 on WordPress get_manual_calendar_events cross site scripting

CVE-2024-12403 | Image Gallery Plugin up to 1.0.5 on WordPress cross site scripting

CVE-2024-47661 | Linux Kernel up to 6.10.8 AMD Display memory corruption (30d1b783b6ee/d6b54900c564)

CVE-2024-3467 | AVEVA PI Asset Framework Client PI System Explorer Environment deserialization (icsa-24-163-03)