CVE-2009-4236
EC-CUBE information disclosure vulnerability (CVE-2009-4236) affects EC-CUBE Ver2 Version 2.4.0 RC1 through 2.4.1 and EC-CUBE Community Edition r18068 through r18428. The issue enables remote attackers to obtain sensitive customer data via unknown vectors related to sessions. Root cause is descri...