Description

Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2013-6389

Related Vulnerabilities

WordPress Plugin Gravity Forms HubSpot Cross-Site Scripting (1.0.8)

WordPress Plugin Simply Poll Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.4.1)

WordPress Plugin Stylish Cost Calculator Cross-Site Scripting (7.0.3)

WordPress Plugin Staff Directory-Employee Directory for WordPress Unspecified Vulnerability (3.6.1)

WordPress Plugin qTranslate X Cross-Site Scripting (3.4.3)

Severity

Medium

Classification

CVE-2013-6389 CWE-20

Tags

Missing Update Known Vulnerabilities