EUVD-2015-4394

Malware in sbrugna...

CVE-2015-4371

Open redirect vulnerability in the Perfecto module before 7.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter...

Open redirect

Open redirect vulnerability in the Perfecto module before 7.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter...

CVE-2015-4371

CVE-2015-4371 affects the Drupal Perfecto module (7.x) prior to 7.x-1.2. The vulnerability is an open redirect: an attacker can craft a URL parameter to redirect users to an attacker-controlled site, enabling phishing. Impact: credential/phishing risk for users visiting affected pages. Affected c...

CVE-2015-4371

Open redirect vulnerability in the Perfecto module before 7.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter...

Multiple Open Redirect Vulnerabilities in Drupal Perfecto Module

Drupal is a developmental CMF Content Management Framework written in the PHP language. Multiple open redirection vulnerabilities exist in the Drupal Perfecto module. Because the program fails to properly check the url, an attacker can exploit the vulnerabilities would be redirected to an...

SA-CONTRIB-2015-075 - Perfecto - Open Redirect

The Perfecto module allows themers accurately calibrate the CSS by floating compositions over the page. The module doesn't sufficiently check user supplied URLs in parameters used for page redirection. An attacker could trick users to visit malicious sites without realizing it. CVE identifiers...