Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2016-3167HistoryApr 12, 2016 - 3:59 p.m.
CVE-2016-3167
2016-04-1215:59:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.003 Low
EPSS
Percentile
69.3%
Open redirect vulnerability in the drupal_goto function in Drupal 6.x before 6.38, when used with PHP before 5.4.7, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a double-encoded URL in the “destination” parameter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | drupal7 | < 7.52-2+deb9u11 | drupal7_7.52-2+deb9u11_all.deb |
Related
github
github
Drupal Open redirect vulnerability in the drupal_goto function
2022-05-17 03:56:54
nvd
nvd
CVE-2016-3167
2016-04-12 15:59:04
prion
prion
Open redirect
2016-04-12 15:59:00
ubuntucve
ubuntucve
CVE-2016-3167
2016-04-12 00:00:00
friendsofphp
friendsofphp
Open redirect via double-encoded 'destination' parameter
2016-02-15 18:57:00
Open redirect via double-encoded 'destination' parameter
2016-02-15 18:57:00
cve
cve
CVE-2016-3167
2016-04-12 15:59:04
osv
osv
Drupal Open redirect vulnerability in the drupal_goto function
2022-05-17 03:56:54
cvelist
cvelist
CVE-2016-3167
2016-04-12 15:00:00
openvas
openvas
Drupal 6.x < 6.38 Multiple Vulnerabilities (SA-CORE-2016-001) - Linux
2016-05-18 00:00:00
Drupal 6.x < 6.38 Multiple Vulnerabilities (SA-CORE-2016-001) - Windows
2016-05-18 00:00:00
drupal
drupal
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2016-001
2016-02-24 00:00:00