CVE-2012-4934 in TomatoCartinfo

Summary

TomatoCart 1.1.7, when the PayPal Express Checkout module is enabled in sandbox mode, allows remote authenticated users to bypass intended payment requirements by modifying a certain redirection URL.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

09/17/2012

Disclosure

10/31/2012

Moderation

VulDB entry created

Entries

1: VDB-62789

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

4.3

EPSS

0.00385

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4934
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4934
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4934/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!