EUVD-2012-1665

Malware in sbrugna...

EUVD-2015-3438

Malware in sbrugna...

CVE-2015-3393

Open redirect vulnerability in the Commerce WeDeal module before 7.x-1.3 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...

Open redirect

Open redirect vulnerability in the Commerce WeDeal module before 7.x-1.3 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...

CVE-2015-3393

Open redirect vulnerability in the Commerce WeDeal module before 7.x-1.3 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...

CVE-2015-3393

CVE-2015-3393 relates to the Commerce WeDeal Drupal module (7.x) prior to 7.x-1.3. The vulnerability is an open redirect: an attacker can redirect users to arbitrary sites via an unspecified parameter, enabling phishing-like redirects. Affected versions: Commerce WeDeal 7.x-1.x before 7.x-1.3. Im...

Drupal Commerce WeDeal module open redirect vulnerability

Drupal is a free, open-source content management system developed in the PHP language and maintained by the Drupal community. An open redirect vulnerability exists in the Drupal Commerce WeDeal module due to the application failing to properly filter user-supplied input. An attacker can build a...

SA-CONTRIB-2015-034 - Commerce WeDeal - Open Redirect

Commerce WeDeal module enables you to do Commerce payments through the payment provider WeDeal. The module doesn't sufficiently check a query parameter used for page redirection, thereby leading to an Open Redirect vulnerability. CVE identifiers issued CVE-2015-3393 Versions affected Commerce...

CVE-2012-1655

Unspecified vulnerability in the UC PayDutchGroup / WeDeal payment module 6.x-1.0 for Drupal allows remote authenticated users to obtain account credentials via unknown attack vectors...

Code injection

Unspecified vulnerability in the UC PayDutchGroup / WeDeal payment module 6.x-1.0 for Drupal allows remote authenticated users to obtain account credentials via unknown attack vectors...

CVE-2012-1655

Unspecified vulnerability in the UC PayDutchGroup / WeDeal payment module 6.x-1.0 for Drupal allows remote authenticated users to obtain account credentials via unknown attack vectors...

CVE-2012-1655

CVE-2012-1655 affects the UC PayDutchGroup / WeDeal payment module (Drupal 6.x-1.0). The Drupal SA confirms information leakage: a malicious user who has an account and can checkout can login to the PayDutchGroup site as the store owner and obtain/manage the store owner’s credentials via scenario...

SA-CONTRIB-2012-031 - Multiple Modules Unsupported - UC PayDutchGroup - Information leakage and Multisite Search sql injection

CVE: CVE-2012-1655 UC PayDutchGroup / WeDeal payment integrates the PayDutchGroup / WeDeal payment gateway with Ubercart. The module exposes account credentials for the store's PayDutchGroup account under certain circumstances allowing a malicious user to login to the PayDutchGroup site as the...