Guest Posted August 13, 2007 Share Posted August 13, 2007 Hello Cubecart People, Is this real? Vulneareability report on Cubecart 3.0.16! http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2862 Thanks Quote Link to comment Share on other sites More sharing options...
Al Brookbanks Posted August 13, 2007 Share Posted August 13, 2007 Hello, We received that vulnerability report a long time ago directly from the author. After much testing it was proved to be unfounded and the vulnerability reporter was unable to prove this can be done in concept. However we added extra sanitation to the variable in question in the 3.0.17 release and never made a comment concerning it as the case was closed as unfounded. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.