Description
Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions.
Remediation
References
Related Vulnerabilities
WordPress Plugin Restricted Site Access Unspecified Vulnerability (2.0)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0215)
Drupal Core 8.8.x Multiple Cross-Site Scripting Vulnerabilities (8.8.0 - 8.8.9)
WordPress Plugin P3 (Plugin Performance Profiler) Cross-Site Scripting (1.5.3.8)