CVE-2016-9451 log

Source
Severity Medium
Remote Yes
Type Open redirect
Description
Under certain circumstances, malicious users could construct a URL to a confirmation form that would trick users into being redirected to a 3rd party website after interacting with the form, thereby exposing the users to potential social engineering attacks.
Group Package Affected Fixed Severity Status Ticket
AVG-75 drupal 7.51-1 7.52-1 Medium Fixed
References
https://www.drupal.org/SA-CORE-2016-005
Notes
This issue only affects drupal version 7