GHSA-hxg2-5c8p-ppwm

Опубликовано: 17 мая 2022

Источник: github

Github: Прошло ревью

CVSS4: 8.7

CVSS3: 7.5

Описание

Drupal has open redirect vulnerability in the Overlay module

Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Ссылки

Пакеты

Наименование

drupal/drupal

composer

Затронутые версииВерсия исправления

>= 7.0, < 7.24

7.24

EPSS

Процентиль: 49%

0.00253

Низкий

8.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2013-6389

Дефекты

CWE-20

CWE-601

Связанные уязвимости

CVE-2013-6389

ubuntu

больше 11 лет назад

Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVE-2013-6389

nvd

больше 11 лет назад

Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVE-2013-6389

debian

больше 11 лет назад

Open redirect vulnerability in the Overlay module in Drupal 7.x before ...

EPSS

Процентиль: 49%

0.00253

Низкий

8.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2013-6389

Дефекты

CWE-20

CWE-601