5.8
CVE-2015-5510
- EPSS 0.36%
- Veröffentlicht 18.08.2015 18:00:15
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginOpen redirect vulnerability in the Content Construction Kit (CCK) 6.x-2.x before 6.x-2.10 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the destinations parameter, related to administration pages.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.0 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.1 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.2 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.3 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.4 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.5 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.6 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.7 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.8 SwPlatformdrupal
Content Construction Kit Project ≫ Content Construction Kit Version6.x-2.9 SwPlatformdrupal
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.551 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|