CVE-2013-5995

EUVD-2013-5825
data/class/helper/SC_Helper_Address.php in the front-features implementation in LOCKON EC-CUBE 2.12.3 through 2.13.0 allows remote authenticated users to obtain sensitive information via unspecified vectors related to addresses.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
lockonec-cube
2.12.3
lockonec-cube
2.12.3en:en
lockonec-cube
2.12.3enp1:enp1
lockonec-cube
2.12.3enp2:enp2
lockonec-cube
2.12.4en:en
lockonec-cube
2.12.5
lockonec-cube
2.12.5en:en
lockonec-cube
2.12.6
lockonec-cube
2.12.6en:en
lockonec-cube
2.13.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN55630933/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000106
http://svn.ec-cube.net/open_trac/changeset/23274
http://www.ec-cube.net/info/weakness/weakness.php?id=51
http://jvn.jp/en/jp/JVN55630933/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000106
http://svn.ec-cube.net/open_trac/changeset/23274
http://www.ec-cube.net/info/weakness/weakness.php?id=51