First published: Sat May 10 2025(Updated: )
A vulnerability classified as problematic was found in Catalyst User Key Authentication Plugin 20220819 on Moodle. Affected by this vulnerability is an unknown functionality of the file /auth/userkey/logout.php of the component Logout. The manipulation of the argument return leads to open redirect. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Catalyst User Key Authentication Plugin |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-4513 is classified as a problematic vulnerability affecting the Catalyst User Key Authentication Plugin.
To fix CVE-2025-4513, ensure that the plugin is updated to the latest version provided by the vendor.
CVE-2025-4513 affects the Logout component, specifically the file /auth/userkey/logout.php.
CVE-2025-4513 exploits the manipulation of the return argument in the logout functionality.
The specific impact of CVE-2025-4513 remains unspecified in the vulnerability description.