CVE-2015-7231

2015-09-17T12:59:10
ID CVE-2015-7231
Type cve
Reporter NVD
Modified 2015-09-21T20:20:21

Description

The Commerce Commonwealth (CBA) module 7.x-1.x before 7.x-1.5 for Drupal does not properly validate payments, which allows remote attackers to make a failed payment appear valid via a crafted URL, related to a "response from commweb."