Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2012-2299

The Ubercart module 6.x-2.x before 6.x-2.8 and 7.x-3.x before 7.x-3.1 for Drupal stores passwords for new customers in plaintext during checkout, which allows local users to obtain sensitive information by reading from the database.

  • Published: Aug 15, 2012
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-2299
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.1
  • AV:L/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
ubercart / ubercart 6.x-2.0-beta4 6.x-2.0-beta4.x
ubercart / ubercart 6.x-2.0-beta3 6.x-2.0-beta3.x
ubercart / ubercart 6.x-2.0-beta2 6.x-2.0-beta2.x
ubercart / ubercart 6.x-2.0-beta1 6.x-2.0-beta1.x
ubercart / ubercart 6.x-2.0 6.x-2.0.x
ubercart / ubercart 6.x-2.0-dev 6.x-2.0-dev.x
ubercart / ubercart 6.x-2.0-beta6 6.x-2.0-beta6.x
ubercart / ubercart 6.x-2.0-rc3 6.x-2.0-rc3.x
ubercart / ubercart 6.x-2.0-rc5 6.x-2.0-rc5.x
ubercart / ubercart 6.x-2.0-rc2 6.x-2.0-rc2.x
ubercart / ubercart 6.x-2.0-rc1 6.x-2.0-rc1.x
ubercart / ubercart 6.x-2.0-rc6 6.x-2.0-rc6.x
ubercart / ubercart 6.x-2.0-rc7 6.x-2.0-rc7.x
ubercart / ubercart 6.x-2.0-rc4 6.x-2.0-rc4.x
ubercart / ubercart 6.x-2.0-beta5 6.x-2.0-beta5.x
ubercart / ubercart 6.x-2.1 6.x-2.1.x
ubercart / ubercart 6.x-2.2 6.x-2.2.x
ubercart / ubercart 6.x-2.3 6.x-2.3.x
ubercart / ubercart 6.x-2.4 6.x-2.4.x
ubercart / ubercart 6.x-2.6 6.x-2.6.x
ubercart / ubercart 6.x-2.7 6.x-2.7.x
ubercart / ubercart 7.x-3.0-rc3 7.x-3.0-rc3.x
ubercart / ubercart 7.x-3.0-alpha1 7.x-3.0-alpha1.x
ubercart / ubercart 7.x-3.0-beta1 7.x-3.0-beta1.x
ubercart / ubercart 7.x-3.0-beta3 7.x-3.0-beta3.x
ubercart / ubercart 7.x-3.0-rc1 7.x-3.0-rc1.x
ubercart / ubercart 7.x-3.0 7.x-3.0.x
ubercart / ubercart 7.x-3.0-beta2 7.x-3.0-beta2.x
ubercart / ubercart 7.x-3.0-beta4 7.x-3.0-beta4.x
ubercart / ubercart 7.x-3.0-alpha3 7.x-3.0-alpha3.x
ubercart / ubercart 7.x-3.0-dev 7.x-3.0-dev.x
ubercart / ubercart 7.x-3.0-alpha2 7.x-3.0-alpha2.x
ubercart / ubercart 7.x-3.0-rc4 7.x-3.0-rc4.x
ubercart / ubercart 7.x-3.0-rc2 7.x-3.0-rc2.x