2016-11-25 18:00:00
mitre
PUBLISHED
Confirmation forms in Drupal 7.x before 7.52 make it easier for remote authenticated users to conduct open redirect attacks via unspecified vectors.