RSS   Vulnerabilities for 'Zipcart'   RSS

2012-08-28
 
CVE-2012-1650

 

 
The ZipCart module 6.x before 6.x-1.4 for Drupal checks the "access content" permission instead of the "access ZipCart downloads" permission when building archives, which allows remote authenticated users with access content permission to bypass intended access restrictions.

 


Copyright 2024, cxsecurity.com

 

Back to Top