Buffer overflow

2012-06-2700:55:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.017 Low

EPSS

Percentile

87.7%

JSON

The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.

CPENameOperatorVersion
ubercart_product_keyseq6.x-1.0 rc2
ubercart_product_keyseq6.120.10
ubercart_product_keyseq6.x-1.0 rc1
ubercart_product_keyseq6.x-1.0 alpha3
ubercart_product_keyseq6.x-1.0 alpha2
ubercart_product_keyseq6.x-1.0 alpha1
ubercart_product_keyseq6.x-1.0 beta1

Name	Operator	Version
ubercart_product_keys	eq	6.x-1.0 rc2
ubercart_product_keys	eq	6.120.10
ubercart_product_keys	eq	6.x-1.0 rc1
ubercart_product_keys	eq	6.x-1.0 alpha3
ubercart_product_keys	eq	6.x-1.0 alpha2
ubercart_product_keys	eq	6.x-1.0 alpha1
ubercart_product_keys	eq	6.x-1.0 beta1