CVE-2012-4934

2012-10-3110:00:00

certcc

www.cve.org

6.3 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.6%

JSON

TomatoCart 1.1.7, when the PayPal Express Checkout module is enabled in sandbox mode, allows remote authenticated users to bypass intended payment requirements by modifying a certain redirection URL.

References

osvdb.org/86883

www.kb.cert.org/vuls/id/207540

www.securityfocus.com/bid/56333

exchange.xforce.ibmcloud.com/vulnerabilities/79696