CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
Percentile
99.7%
CVE: CVE-2012-2702.
This module enables you to sell product keys from an Ubercart store.
Under certain circumstances, a user can view all unassigned product keys which could grant them access to the software circumventing the process of selling the key.
Drupal core is not affected. If you do not use the contributed Ubercart Product Keys module, there is nothing you need to do.
Install the latest version:
Also see the Ubercart Product Keys project page.