Vulnerability Details CVE-2012-1623
The Registration Codes module before 6.x-2.4 for Drupal does not restrict access to the registration code list, which might allow remote attackers to bypass intended registration restrictions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 68.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://drupal.org/node/1394172
- http://secunia.com/advisories/47443
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.osvdb.org/78184
- http://www.securityfocus.com/bid/51271
- http://drupal.org/node/1394172
- http://secunia.com/advisories/47443
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.osvdb.org/78184
- http://www.securityfocus.com/bid/51271
Products affected by CVE-2012-1623
-
cpe:2.3:a:aidanlister:regcode:*
-
cpe:2.3:a:aidanlister:regcode:6.x-1.0
-
cpe:2.3:a:aidanlister:regcode:6.x-1.1
-
cpe:2.3:a:aidanlister:regcode:6.x-1.2
-
cpe:2.3:a:aidanlister:regcode:6.x-1.3
-
cpe:2.3:a:aidanlister:regcode:6.x-1.4
-
cpe:2.3:a:aidanlister:regcode:6.x-1.5
-
cpe:2.3:a:aidanlister:regcode:6.x-1.x
-
cpe:2.3:a:aidanlister:regcode:6.x-2.0
-
cpe:2.3:a:aidanlister:regcode:6.x-2.1
-
cpe:2.3:a:aidanlister:regcode:6.x-2.2
-
cpe:2.3:a:drupal:drupal:-