Описание
The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.
The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-2702
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75720
- http://drupal.org/node/1580752
- http://drupal.org/node/1585532
- http://drupalcode.org/project/uc_product_keys.git/commitdiff/19fa261
- http://osvdb.org/82005
- http://secunia.com/advisories/49169
- http://www.openwall.com/lists/oss-security/2012/06/14/3
EPSS
Процентиль: 70%
0.00663
Низкий
CVE ID
Связанные уязвимости
nvd
почти 13 лет назад
The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.
EPSS
Процентиль: 70%
0.00663
Низкий