CVE-2014-9363CVE-2014-9363

Affected configuration(s):

cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.0::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.1::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.2::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.3::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.4::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.5::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.6::~~~drupal~~
cpe:/a:meta_tags_quick_project:meta_tags_quick:7.x-2.7::~~~drupal~~

Date published: 2014-12-10T15:59:02.617-05:00

Date last modified: 2014-12-11T12:34:46.403-05:00

CVSS Score: 5.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: https://www.drupal.org/node/2295975

Summary: Open redirect vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the destination parameter.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.