1 results (0.003 seconds)
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4934
https://notcve.org/view.php?id=CVE-2012-4934
TomatoCart 1.1.7, when the PayPal Express Checkout module is enabled in sandbox mode, allows remote authenticated users to bypass intended payment requirements by modifying a certain redirection URL. TomatoCart v1.1.7, cuando el módulo PayPal Express Checkout está activado en modo de ejecución controlada (sandbox), permite a usuarios remotos autenticados a evitar los requisitos de pago establecidos, modificando cierta redirección URL. • http://osvdb.org/86883 http://www.kb.cert.org/vuls/id/207540 http://www.securityfocus.com/bid/56333 https://exchange.xforce.ibmcloud.com/vulnerabilities/79696 • CWE-264: Permissions, Privileges, and Access Controls •