2 matches found
CVE-2015-5510
Open redirect vulnerability in the Content Construction Kit CCK 6.x-2.x before 6.x-2.10 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the destinations parameter, related to administration pages...
CVE-2015-5510
The CVE-2015-5510 entry concerns the Drupal Content Construction Kit (CCK) module. Affected: CCK 6.x-2.x before 6.x-2.10. Root cause: an open redirect vulnerability via the destinations parameter on certain admin pages, allowing remote attackers to redirect users to arbitrary sites (phishing risk...