CVE-2009-3784

EUVD-2009-3756
Open redirect vulnerability in Simplenews Statistics 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Affected Products (NVD)
VendorProductVersion
sjoerd_arendsensimplenews_statistics
6.x-1.0:x
sjoerd_arendsensimplenews_statistics
6.x-1.1:x
sjoerd_arendsensimplenews_statistics
6.x-1.2:x
sjoerd_arendsensimplenews_statistics
6.x-1.x-dev:x
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://drupal.org/node/590098
http://drupal.org/node/611002
http://secunia.com/advisories/37128
http://www.securityfocus.com/bid/36790
http://drupal.org/node/590098
http://drupal.org/node/611002
http://secunia.com/advisories/37128
http://www.securityfocus.com/bid/36790