CVE-2025-4513 – Moodle Catalyst User Key Authentication Plugin Open Redirect Vulnerability

May 10, 2025

CVE ID : CVE-2025-4513

Published : May 10, 2025, 8:15 p.m. | 4 hours, 9 minutes ago

Description : A vulnerability classified as problematic was found in Catalyst User Key Authentication Plugin 20220819 on Moodle. Affected by this vulnerability is an unknown functionality of the file /auth/userkey/logout.php of the component Logout. The manipulation of the argument return leads to open redirect. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4515 – Zylon PrivateGPT Cross-Domain Policy Vulnerability

Next Article CVE-2025-4514 – Zhengzhou Jiuhua Electronic Technology mayicms SQL Injection Vulnerability

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2025-4513 – Moodle Catalyst User Key Authentication Plugin Open Redirect Vulnerability

Critical Kibana Flaws: CVE-2025-2135 (CVSS 9.9) Allows Heap Corruption & RCE; Open Redirect Also Patched

CVE-2025-0966 – IBM InfoSphere Information Server SQL Injection Vulnerability

CVE-2025-50201 – WeGIA Web Manager OS Command Injection Vulnerability

CVE-2025-4498 – Simple Bus Reservation System Buffer Overflow Vulnerability

CVE-2025-37816 – Linux Kernel Mei VSC Buffer Overflow Vulnerability

Mastering Modern Monorepo Development with pnpm, Workspaces

Do I need to worry about state-sponsored threats like Regin?

CVE-2025-6090 – H3C GR-5400AX Critical Buffer Overflow in UpdateWanparamsMulti/UpdateIpv6params

Windows 11’s Start menu redesign almost covers the full screen, but you can disable it

CVE-2025-47662 – Woobox Stored Cross-site Scripting (XSS)

CVE-2025-4513 – Moodle Catalyst User Key Authentication Plugin Open Redirect Vulnerability

Related Posts