CVE-2019-14831 - AskarLabs CVE Database

CVE-2019-14831

Vendor N/A

Product Moodle

Weakness CWE-601 · Open redirect

Published March 19, 2021

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where forum subscribe link contained an open redirect if forced subscription mode was enabled. If a forum's subscription mode was set to "forced subscription", the forum's subscribe link contained an open redirect.

Key dates

02Disclosure timeline

March 19, 2021 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-14831 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/601.html

Related vulnerabilities

04Related CVE

CVE-2022-20634 Cisco Enterprise Chat and Email Open Redirect Vulnerability CVE-2021-29622 Arbitrary redirects under /new endpoint CVE-2020-3311 Cisco Firepower Management Center Open Redirect Vulnerability CVE-2025-50181 urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation CVE-2025-48936 ZITADEL Allows Account Takeover via Malicious X-Forwarded-Proto Header Injection