Vulnerability Details CVE-2012-1623
The Registration Codes module before 6.x-2.4 for Drupal does not restrict access to the registration code list, which might allow remote attackers to bypass intended registration restrictions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://drupal.org/node/1394172
- http://secunia.com/advisories/47443
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.osvdb.org/78184
- http://www.securityfocus.com/bid/51271
- http://drupal.org/node/1394172
- http://secunia.com/advisories/47443
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.osvdb.org/78184
- http://www.securityfocus.com/bid/51271
Products affected by CVE-2012-1623
-
cpe:2.3:a:aidanlister:regcode:*
-
cpe:2.3:a:aidanlister:regcode:6.x-1.0
-
cpe:2.3:a:aidanlister:regcode:6.x-1.1
-
cpe:2.3:a:aidanlister:regcode:6.x-1.2
-
cpe:2.3:a:aidanlister:regcode:6.x-1.3
-
cpe:2.3:a:aidanlister:regcode:6.x-1.4
-
cpe:2.3:a:aidanlister:regcode:6.x-1.5
-
cpe:2.3:a:aidanlister:regcode:6.x-1.x
-
cpe:2.3:a:aidanlister:regcode:6.x-2.0
-
cpe:2.3:a:aidanlister:regcode:6.x-2.1
-
cpe:2.3:a:aidanlister:regcode:6.x-2.2
-
cpe:2.3:a:drupal:drupal:-