Hunter Fox

**Name of the Vulnerable Software and Affected Versions** Apache Solr Real-Time module versions 7.x-1.x before 7.x-1.2 for Drupal **Description** The issue allows remote attackers to obtain information about unpublished content via a search because it does not check the status of an entity when indexing. **Recommendations** For Apache Solr Real-Time module versions 7.x-1.x before 7.x-1.2, update to version 7.x-1.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Drupal versions 6.x through 6.34 Drupal versions 7.x through 7.34 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the `destination` parameter. This can lead to phishing attacks. **Recommendations** For Drupal versions 6.x through 6.34, update to version 6.35 or later. For Drupal versions 7.x through 7.34, update to version 7.35 or later.