NuytsTech Security

CVE-2012-2702

by ·

The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain conditions related to the uid.

Date published : 2012-06-26

http://drupal.org/node/1580752

http://drupalcode.org/project/uc_product_keys.git/commitdiff/19fa261

Tags: