VDB

GCVE-110-MAGEIA-2015-253

GCVE-110-MAGEIA-2015-253
Advisory Published
Vulnetix · Advisory published July 1, 2015
Incorrect cache handling made private content viewed by "user 1" exposed to other, non-privileged users (CVE-2015-3231). A flaw in the Field UI module made it possible for attackers to redirect users to malicious sites (CVE-2015-3232). Due to insufficient URL validation, the Overlay module could be used to redirect users to malicious sites (CVE-2015-3233). The OpenID module allowed an attacker to log in as other users, including administrators (CVE-2015-3234).

Affected Products

VendorProductVersionsPlatforms
Mageiadrupal0 (affected), 7.38-1.mga5 (unaffected)
Mageiadrupal7.38-1.mga4 (unaffected), 0 (affected)

Browse GCVE Records

73,196 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›