4.3

CVE-2009-4534

Open redirect vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NanwichFaq Ask Version <= 6.x-2.x-dev
   DrupalDrupal
NanwichFaq Ask Version5.x-1.0
   DrupalDrupal
NanwichFaq Ask Version5.x-1.0-beta1
   DrupalDrupal
NanwichFaq Ask Version5.x-1.0-beta2
   DrupalDrupal
NanwichFaq Ask Version5.x-1.0-beta3
   DrupalDrupal
NanwichFaq Ask Version5.x-1.0-beta4
   DrupalDrupal
NanwichFaq Ask Version5.x-1.1
   DrupalDrupal
NanwichFaq Ask Version5.x-1.2
   DrupalDrupal
NanwichFaq Ask Version5.x-1.3
   DrupalDrupal
NanwichFaq Ask Version5.x-1.x-dev
   DrupalDrupal
NanwichFaq Ask Version6.x-1.0
   DrupalDrupal
NanwichFaq Ask Version6.x-1.0-beta1
   DrupalDrupal
NanwichFaq Ask Version6.x-1.1
   DrupalDrupal
NanwichFaq Ask Version6.x-1.2
   DrupalDrupal
NanwichFaq Ask Version6.x-1.x-dev
   DrupalDrupal
NanwichFaq Ask Version6.x-2.0-alpha1
   DrupalDrupal
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.86% 0.537
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://drupal.org/node/617444
Vendor Advisory
http://www.securityfocus.com/bid/36877