Skip to main content

Paypal Pro Payflow Module

1 CVEs product

Monthly

CVE-2012-5797 MEDIUM POC This Month

The PayPal Pro PayFlow module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Paypal Pro Payflow Module Oscommerce
NVD
CVSS 2.0
5.8
EPSS
0.1%
EPSS 0% CVSS 5.8
MEDIUM POC This Month

The PayPal Pro PayFlow module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Paypal Pro Payflow Module Oscommerce
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy