Description

A flaw was found in Moodle. An open redirect vulnerability in the OAuth login flow allows a remote attacker to redirect users to attacker-controlled pages after they have successfully authenticated. This occurs due to insufficient validation of redirect parameters, which could lead to phishing attacks or information disclosure.

INFO

Published Date :

2026-02-03T10:52:09.893Z

Last Modified :

2026-02-03T15:44:29.178Z

Source :

fedora
AFFECTED PRODUCTS

The following products are affected by CVE-2025-67852 vulnerability.

Vendors Products
Moodle
  • Moodle
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-67852.

URL Resource
https://access.redhat.com/security/cve/CVE-2025-67852 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2423844 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact