4 matches found
Fedora 20 : drupal7-context-3.6-1.fc20 (2015-0726)
CVE-2015-1051 / SA-CONTRIB-2015-004 - Context - Open Redirect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora 21 : drupal7-context-3.6-1.fc21 (2015-0717)
CVE-2015-1051 / SA-CONTRIB-2015-004 - Context - Open Redirect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
CVE-2015-1051
Summary: CVE-2015-1051 is an Open Redirect vulnerability in the Drupal Context module’s Context UI (Context module, 7.x-3.x) allowing redirection to arbitrary sites via the destination parameter. The affected line is before 7.x-3.6 for Drupal. What’s affected: Drupal’s Context module Context UI c...
SA-CONTRIB-2015-004 - Context - Open Redirect
Context allows you to manage contextual conditions and reactions for different portions of your site. Context UI module wasn't checking for external URLs in the HTTP GET destination parameter when redirecting users that are activating/deactivating the Context UI inline editor dialog, thereby...