Description
The Ubercart AJAX Cart 6.x-2.x before 6.x-2.1 for Drupal stores the PHP session id in the JavaScript settings array in page loads, which might allow remote attackers to obtain sensitive information by sniffing or reading the cache of the HTML of a webpage.
References (6)
Core 6
Core References
Exploit x_refsource_confirm
http://drupalcode.org/project/uc_ajax_cart.git/commitdiff/b59cdd5
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/76332
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/53999
Patch, Vendor Advisory x_refsource_misc
http://drupal.org/node/1633048
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/06/14/3
Patch x_refsource_confirm
http://drupal.org/node/1619586
Scores
EPSS
0.0217
EPSS Percentile
80.1%
Details
CWE
CWE-200
Status
published
Products (1)
richardo_ante/ubercart_ajax_cart
6.x-2.0 (19 CPE variants)
Published
Jun 27, 2012
Tracked Since
Feb 18, 2026