AVG-75 log
| Package | drupal |
| Status | Fixed |
| Severity | Medium |
| Type | open redirect |
| Affected | 7.51-1 |
| Fixed | 7.52-1 |
| Current | 10.2.4-1 [extra] |
| Ticket | None |
| Created | Sat Nov 19 20:59:44 2016 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2016-9451 | Medium | Yes | Open redirect | Under certain circumstances, malicious users could construct a URL to a confirmation form that would trick users into being redirected to a 3rd party... |
| References |
|---|
https://www.drupal.org/SA-CORE-2016-005 |