5
CVE-2012-2702
- EPSS 2.58%
- Veröffentlicht 27.06.2012 00:55:02
- Zuletzt bearbeitet 16.06.2026 23:41:54
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginThe Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updatealpha1
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updatealpha2
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updatealpha3
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updatebeta1
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updaterc1
Tony Freixas ≫ Ubercart Product Keys Version6.x-1.0 Updaterc2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.58% | 0.832 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://www.openwall.com/lists/oss-security/2012/06/14/3
http://drupal.org/node/1580752
http://drupal.org/node/1585532
http://drupalcode.org/project/uc_product_keys.git/commitdiff/19fa261
http://osvdb.org/82005
http://secunia.com/advisories/49169
https://exchange.xforce.ibmcloud.com/vulnerabilities/75720