CVE Vulnerabilities

CVE-2015-1051

Published: Jan 15, 2015 | Modified: Aug 23, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Open redirect vulnerability in the Context UI module in the Context module 7.x-3.x before 7.x-3.6 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination parameter.

Affected Software

Name Vendor Start Version End Version
Context Context_project 7.x-3.0 7.x-3.0
Context Context_project 7.x-3.1 7.x-3.1
Context Context_project 7.x-3.2 7.x-3.2
Context Context_project 7.x-3.3 7.x-3.3
Context Context_project 7.x-3.4 7.x-3.4
Context Context_project 7.x-3.5 7.x-3.5

References