Drupal Prior to 6.16 and 5.22 Multiple Security Vulnerabilities

Drupal Prior to 6.16 and 5.22 Multiple Security Vulnerabilities

An attacker can use standard tools to exploit these issues. In some situations, the attacker must trick a victim into following a malicious URI.

The following example URI is available for the redirect issue:

http://www.example.com/drupal-6.16/index.php?q=http://www.example.net