Lucene search
K

10 matches found

OSV
OSV
added 2017/10/18 6:29 p.m.4 views

UBUNTU-CVE-2015-7943

Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.41, the jQuery Update module 7.x-2.x before 7.x-2.7 for Drupal, and the LABjs module 7.x-1.x before 7.x-1.8 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vector...

6.1CVSS6.7AI score0.01774EPSS
Exploits0References4
CVE
CVE
added 2017/10/18 6:0 p.m.84 views

CVE-2015-7943

CVE-2015-7943 describes an open redirect vulnerability in Drupal 7.x where the Overlay module does not sufficiently validate URLs, enabling redirects to arbitrary sites and phishing via unspecified vectors. Affected are: Drupal core Overlay module in 7.x before 7.41; the jQuery Update module (7.x...

6.1CVSS6.2AI score0.01774EPSS
Exploits0References5Affected Software3
Debian CVE
Debian CVE
added 2017/10/18 6:0 p.m.24 views

CVE-2015-7943

Removed by vendor...

6.1CVSS6.2AI score0.01774EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/06/26 12:0 a.m.32 views

Debian DSA-3897-1 : drupal7 - security update

Two vulnerabilities were discovered in Drupal, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2015-7943 Samuel Mortenson and Pere Orga discovered that the overlay module does not sufficiently validate URLs...

6.5CVSS6.7AI score0.01947EPSS
Exploits0References11
Debian
Debian
added 2017/06/24 5:31 a.m.32 views

[SECURITY] [DSA 3897-1] drupal7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3897-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 24, 2017 https://www.debian.org/security/faq -...

5.8CVSS2AI score0.01947EPSS
Exploits0
Debian
Debian
added 2017/06/24 5:31 a.m.30 views

[SECURITY] [DSA 3897-1] drupal7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3897-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 24, 2017 https://www.debian.org/security/faq -...

6.5CVSS7.4AI score0.01947EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/11/08 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2015-0425)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.01774EPSS
Exploits0References9
Mageia
Mageia
added 2015/11/04 6:3 p.m.33 views

Updated drupal package fixes security vulnerability

The Overlay module in Drupal core displays administrative pages as a layer over the current page using JavaScript, rather than replacing the page in the browser window. The Overlay module does not sufficiently validate URLs prior to displaying their contents, leading to an open redirect...

6.1CVSS6.2AI score0.01774EPSS
Exploits0References7
Drupal
Drupal
added 2015/10/21 12:0 a.m.25 views

jQuery Update - Less Critical - Open Redirect - SA-CONTRIB-2015-158

The jQuery Update module enables you to update jQuery on your site. The module ships with a modified version of the core Overlay JavaScript file, which is vulnerable to an open redirect attack see SA-CORE-2015-004. Only sites with the Overlay module enabled are vulnerable. An incomplete fix for...

6.1CVSS6.1AI score0.01774EPSS
Exploits0References13
Drupal
Drupal
added 2015/10/21 12:0 a.m.647 views

Drupal Core - Overlay - Less Critical - Open Redirect - SA-CORE-2015-004

The Overlay module in Drupal core displays administrative pages as a layer over the current page using JavaScript, rather than replacing the page in the browser window. The Overlay module does not sufficiently validate URLs prior to displaying their contents, leading to an open redirect...

6.1CVSS6AI score0.01774EPSS
Exploits0References11
Rows per page
Query Builder