Lucene search
HistoryApr 21, 2015 - 4:59 p.m.
CVE-2015-3342
cve-2015-3342
open redirect
ubercart currency conversion module
drupal
remote attackers
phishing
nvd
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.9 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.6%
Open redirect vulnerability in the Ubercart Currency Conversion module before 6.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination query parameter.
Affected configurations
Node
ubercart_currency_conversion_projectubercart_currency_conversionRange≤6.x-1.1drupal
Related
prion
prion
Open redirect
2015-04-21 16:59:00
drupal
drupal
SA-CONTRIB-2015-019 - Ubercart Currency Conversion - Open Redirect
2015-01-14 00:00:00
cvelist
cvelist
CVE-2015-3342
2015-04-21 16:00:00
nvd
nvd
CVE-2015-3342
2015-04-21 16:59:02
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.9 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.6%
Related for CVE-2015-3342