EUVD-2012-4411

Malware in sbrugna...

bangor.ac.uk XSS vulnerability

Vulnerable URL: https://www.bangor.ac.uk/mindfulness/securetrading/processor.php?acquirerresponsecode=00==BARCLAYS=032267=5500=86.132.23.109=0=%22%3Etrolo%3Ci%3Etralala%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:|...

bangor.ac.uk XSS vulnerability

Vulnerable URL:...

CVE-2012-4482

The Ubercart SecureTrading Payment Method module 6.x for Drupal does not properly verify payment notification information, which allows remote attackers to purchase an item without paying via unspecified vectors...

Information disclosure

The Ubercart SecureTrading Payment Method module 6.x for Drupal does not properly verify payment notification information, which allows remote attackers to purchase an item without paying via unspecified vectors...

CVE-2012-4482

CVE-2012-4482 affects the Ubercart SecureTrading Payment Method module 6.x for Drupal. The root cause is that payment notification information is not properly verified, enabling remote attackers to complete a purchase without payment via unspecified vectors. The connected sources (including NVD a...

CVE-2012-4482

The Ubercart SecureTrading Payment Method module 6.x for Drupal does not properly verify payment notification information, which allows remote attackers to purchase an item without paying via unspecified vectors...

SA-CONTRIB-2012-112 - Ubercart SecureTrading - Failure to follow guideline/specification

The Ubercart SecureTrading Payment Method module provides an Ubercart payment method for the SecureTrading.com gateway. The module's payment method did not properly verify the validity of payment notification information. A malicious user could trick a site into thinking that an item has been pai...