The Ubercart SecureTrading Payment Method module 6.x for Drupal does not properly verify payment notification information, which allows remote malicious users to purchase an item without paying via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
longwaveconsulting ubercart_securetrading_payment_method_module 6.x-1.0 |