Vulnerabilities (CVE)

Filtered by vendor Richardo Ante Subscribe
Filtered by product Ubercart Ajax Cart
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2731 2 Drupal, Richardo Ante 2 Drupal, Ubercart Ajax Cart 2024-11-21 2.6 LOW N/A
The Ubercart AJAX Cart 6.x-2.x before 6.x-2.1 for Drupal stores the PHP session id in the JavaScript settings array in page loads, which might allow remote attackers to obtain sensitive information by sniffing or reading the cache of the HTML of a webpage.