VulnerableCode Vulnerability Details - VCID-5fnh-btdr-cbcz

Search for vulnerabilities

Vulnerability details: VCID-5fnh-btdr-cbcz

Essentials
Severities (12)
References (11)
Severity details (10)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-5fnh-btdr-cbcz
Aliases	CVE-2011-4582 GHSA-jcrj-x36p-h9f6
Summary	Moodle Open Redirect in Calendar Set Page Open redirect vulnerability in the Calendar set page in Moodle 2.1.x before 2.1.3 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a redirection URL.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (4)

CWE-601	URL Redirection to Untrusted Site ('Open Redirect')
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-20	Improper Input Validation
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-28720&sr=1
generic_textual	MODERATE	http://moodle.org/mod/forum/discuss.php?d=191748
epss	0.00161	https://api.first.org/data/v1/epss?cve=CVE-2011-4582
epss	0.00161	https://api.first.org/data/v1/epss?cve=CVE-2011-4582
generic_textual	MODERATE	https://bugzilla.redhat.com/show_bug.cgi?id=761248
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-jcrj-x36p-h9f6
generic_textual	MODERATE	https://github.com/moodle/moodle
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/0d2672748c00181d9cdae2aabbab916cbd64c47d
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/21e7d4c5fc9cc5df54c9c7d82190f1339d163a9e
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/7f422374c101dcb0affdd5127b855671af4f3748
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/eb59a448f7879d69b21fcde7f1fcddd69655e045
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2011-4582

Reference id	Reference type	URL
		http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-28720&sr=1
		http://moodle.org/mod/forum/discuss.php?d=191748
		https://api.first.org/data/v1/epss?cve=CVE-2011-4582
		https://bugzilla.redhat.com/show_bug.cgi?id=761248
		https://github.com/moodle/moodle
		https://github.com/moodle/moodle/commit/0d2672748c00181d9cdae2aabbab916cbd64c47d
		https://github.com/moodle/moodle/commit/21e7d4c5fc9cc5df54c9c7d82190f1339d163a9e
		https://github.com/moodle/moodle/commit/7f422374c101dcb0affdd5127b855671af4f3748
		https://github.com/moodle/moodle/commit/eb59a448f7879d69b21fcde7f1fcddd69655e045
		https://nvd.nist.gov/vuln/detail/CVE-2011-4582
GHSA-jcrj-x36p-h9f6		https://github.com/advisories/GHSA-jcrj-x36p-h9f6

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.37824
EPSS Score	0.00161
Published At	June 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-01T12:26:31.326968+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-jcrj-x36p-h9f6/GHSA-jcrj-x36p-h9f6.json	36.1.3