CVE-2015-3393

Name of the Vulnerable Software and Affected Versions Commerce WeDeal module versions prior to 7.x-1.3 for Drupal

Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter.

Recommendations For versions prior to 7.x-1.3, update to version 7.x-1.3 or later to resolve the issue.