CVE-2013-0182
The CVE-2013-0182 issue affects the Drupal contributed module Payment (7.x-1.x) prior to 7.x-1.3. The root cause is improper access control that lets remote attackers read other users’ payments. Impact is information disclosure of payments; Drupal core is not affected. Public details confirm the ...