Vulnerabilities > CVE-2015-3342 - Unspecified vulnerability in Ubercart Currency Conversion Project Ubercart Currency Conversion 6.X1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Open redirect vulnerability in the Ubercart Currency Conversion module before 6.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination query parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.openwall.com/lists/oss-security/2015/01/29/6
- http://www.openwall.com/lists/oss-security/2015/01/29/6
- http://www.securityfocus.com/bid/72365
- http://www.securityfocus.com/bid/72365
- https://www.drupal.org/node/2407145
- https://www.drupal.org/node/2407145
- https://www.drupal.org/node/2407347
- https://www.drupal.org/node/2407347