Open redirect vulnerability in index.php in ocPortal before 7.1.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter.Referenceshttp://ocportal.com/site/news/view/ocportal-security-update.htmhttp://ocportal.com/site/news/view/new-releases/ocportal-7-1-6-released.htm
