Open Redirect Vulnerability in Field UI Module of Drupal
CVE-2015-3232

Currently unrated

Key Information:

Vendor

Drupal
Status
Drupal
Vendor
CVE Published:
22 June 2015

What is CVE-2015-3232?

The Field UI module in Drupal versions 7.x before 7.38 contains an open redirect vulnerability that allows remote attackers to redirect users to arbitrary websites. By manipulating the destinations parameter, attackers can create phishing scenarios, which may lead users to malicious sites disguised as legitimate. This flaw emphasizes the need for robust input validation and security measures to protect users from deceptive redirection.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA
http://www.debian.org/security/2015/dsa-3291
vendor-advisoryx_refsource_DEBIAN
http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.