Lucene search
HistoryJun 16, 2015 - 5:59 p.m.
CVE-2015-4398
cve-2015-4398
open redirect
chaos tool suite
ctools
drupal
vulnerability
nvd
6.9 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.004 Low
EPSS
Percentile
72.7%
Open redirect vulnerability in the Chaos tool suite (ctools) module before 6.x-1.12 and 7.x-1.x before 7.x-1.7 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors involving processing confirmation delete pages.
Affected configurations
Node
chaos_tool_suite_projectctoolsRange≤6.x-1.11drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.0drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.1drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.2drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.3drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.4drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.5drupal
ORchaos_tool_suite_projectctoolsMatch7.x-1.6drupal
Related
prion
prion
Open redirect
2015-06-16 17:59:00
nvd
nvd
CVE-2015-4398
2015-06-16 17:59:00
cvelist
cvelist
CVE-2015-4398
2015-06-16 17:00:00
drupal
drupal
SA-CONTRIB-2015-079 - Chaos tool suite (ctools) - Multiple vulnerabilities
2015-03-18 00:00:00
6.9 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.004 Low
EPSS
Percentile
72.7%
Related for CVE-2015-4398