ID CVE-2012-2062
Summary Open redirect vulnerability in the Redirecting click bouncer module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:sami_kiminki:redirecting_click_bouncer:*:*:*:*:*:*:*:*
    cpe:2.3:a:sami_kiminki:redirecting_click_bouncer:*:*:*:*:*:*:*:*
  • cpe:2.3:a:drupal:drupal:-:*:*:*:*:*:*:*
    cpe:2.3:a:drupal:drupal:-:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 29-08-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:P
refmap via4
bid 52502
misc http://drupal.org/node/1482126
mlist [oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)
xf redirecting-drupal-open-redirect(74059)
Last major update 29-08-2017 - 01:31
Published 17-09-2012 - 20:55
Last modified 29-08-2017 - 01:31
Back to Top