CVE-2012-2296

🗓️ 25 Jul 2012 21:00:00Reported by redhatType

Drupal Janrain Engage module stores user profile data in session tables, allowing sensitive info exposure

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2012-2296	25 Jul 201221:00	–	cvelist
Drupal	SA-CONTRIB-2012-056 - Janrain Engage - Sensitive Data Protection Vulnerability	4 Apr 201200:00	–	drupal
EUVD	EUVD-2012-2289	7 Oct 202500:30	–	euvd
NVD	CVE-2012-2296	25 Jul 201221:55	–	nvd
Prion	Design/Logic Flaw	25 Jul 201221:55	–	prion

NVD

Node

janrain rpxMatch6.x-1.0beta1

janrain rpxMatch6.x-1.0dev

janrain rpxMatch6.x-1.0rc1

janrain rpxMatch6.x-1.0rc2

janrain rpxMatch6.x-1.1rc2

janrain rpxMatch6.x-1.2

janrain rpxMatch6.x-1.2rc2

janrain rpxMatch6.x-1.3

janrain rpxMatch6.x-1.4

janrain rpxMatch6.x-2.1

janrain rpxMatch6.x-2.1beta1

janrain rpxMatch6.x-2.1beta2

janrain rpxMatch6.x-2.1beta3

janrain rpxMatch6.x-2.1dev

janrain rpxMatch6.x-2.1rc1

janrain rpxMatch7.x-2.0

janrain rpxMatch7.x-2.1

janrain rpxMatch7.x-2.1beta1

janrain rpxMatch7.x-2.1beta2

janrain rpxMatch7.x-2.1beta3

janrain rpxMatch7.x-2.1rc1

janrain rpxMatch7.x-2.xdev

AND

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/74616
openwall	www.openwall.com/lists/oss-security/2012/05/03/2
drupal	www.drupal.org/node/1515282
openwall	www.openwall.com/lists/oss-security/2012/05/03/1
openwall	www.openwall.com/lists/oss-security/2012/04/10/12
drupal	www.drupal.org/node/1515114
drupal	www.drupal.org/node/1515120

29 Apr 2026 01:13Current

6.4Medium risk

Vulners AI Score6.4

CVSS 25

EPSS0.00516