exploitDog

CVE-2015-2215

Опубликовано: 05 мар. 2015

Источник: nvd

CVSS2: 5.8

EPSS Низкий

Описание

Open redirect vulnerability in the Services single sign-on server helper (services_sso_server_helper) module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.

Комментарий

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

Ссылки

http://www.securityfocus.com/bid/72803
https://www.drupal.org/node/2437965
Vendor Advisory
http://www.securityfocus.com/bid/72803
https://www.drupal.org/node/2437965
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:services_single_sign-on_server_helper_project:services_single_sign-on_server_helper:-:*:*:*:*:drupal:*:*

EPSS

Процентиль: 45%

0.00224

Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hj5h-h95x-wm95

github

больше 3 лет назад

Open redirect vulnerability in the Services single sign-on server helper (services_sso_server_helper) module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.

EPSS

Процентиль: 45%

0.00224

Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other