Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.41, the jQuery Update module 7.x-2.x before 7.x-2.7 for Drupal, and the LABjs module 7.x-1.x before 7.x-1.8 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-3233.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal core Overlay模块开放重定向漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。Overlay是其中的一个能够在网页的顶层显示Drupal管理界面的模块。 jQuery Update模块7.x-2.7之前的7.x-2.x版本、Drupal 7.41之前7.x版本的Overlay模块和LABjs for Drupal 7.x-1.8之前的7.x-1.x版本中的中存在开放重定向漏洞,该漏洞源于程序没有充分过滤用户提交的输入。攻击者可通过构造特制的URI并诱使用户访问,利用该漏洞将用户重定向到任意Web站
CVSS Information
N/A
Vulnerability Type
N/A