Description

Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions.

Remediation

References

CVE-2020-13662

Related Vulnerabilities

Grafana Improper Input Validation Vulnerability (CVE-2022-39306)

Jboss EAP Improper Input Validation Vulnerability (CVE-2018-1000873)

PHP Use After Free Vulnerability (CVE-2020-7068)

WordPress Plugin Top 10-Popular posts for WordPress Multiple Vulnerabilities (3.2.3)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4400)

Severity

Medium

Classification

CVE-2020-13662 CWE-601 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities