CyberSec.Space Logo
Back to CVE Browser

CVE-2012-4489

MEDIUM
5.8
CVSS Severity Score
EPSS Score0.1840%
EPSS Percentile24.88th
PublishedOct 31, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Open redirect vulnerability in the securelogin_secure_redirect function in the Secure Login module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter.

Affected Platforms (CPE)

πŸ“¦
Mark Burdett

Securelogin

= 7.x-1.0
πŸ“¦
Mark Burdett

Securelogin

= 7.x-1.1
πŸ“¦
Mark Burdett

Securelogin

= 7.x-1.2
πŸ“¦
Mark Burdett

Securelogin

= 7.x-1.x

References & Advisories

πŸ”— http://drupal.org/node/1700594
πŸ”— http://drupalcode.org/project/securelogin.git/commitdiff/88518df
πŸ”— http://www.openwall.com/lists/oss-security/2012/10/04/6
πŸ”— http://www.openwall.com/lists/oss-security/2012/10/07/1
πŸ”— http://www.securityfocus.com/bid/54675
πŸ”— https://drupal.org/node/1692976
πŸ”— https://drupal.org/node/1698988
πŸ”— http://drupal.org/node/1700594

Related Vulnerabilities

CVE-2007-247610.0

Unspecified vulnerability in Novell SecureLogin (NSL) 6 SP1 before 6.0.106 has unknown impact and remote attack vectors, related t...

CVE-2007-24756.5

Unspecified vulnerability in the ADSCHEMA utility in Novell SecureLogin (NSL) 6 SP1 before 6.0.106 has unknown impact and remote a...

CVE-2012-525410.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2012-525510.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...