Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Bitrix Subscribe
Filtered by product Bitrix E-store Module
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-6788 1 Bitrix 2 Bitrix E-store Module, Bitrix Site Manager 2014-06-26 7.5 HIGH N/A
The Bitrix e-Store module before 14.0.1 for Bitrix Site Manager uses sequential values for the BITRIX_SM_SALE_UID cookie, which makes it easier for remote attackers to guess the cookie value and bypass authentication via a brute force attack.