Drupal · Drupal · CVE-2015-3233
**Name of the Vulnerable Software and Affected Versions**
Drupal versions prior to 7.38
**Description**
The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks.
**Recommendations**
For versions prior to 7.38, update to version 7.38 or later to resolve the issue.