Security Advisory

CVE-2013-6788

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-05-30 14:00:00

Last updated 2024-08-06 17:46:23

Assigner mitre

State PUBLISHED

Description

The Bitrix e-Store module before 14.0.1 for Bitrix Site Manager uses sequential values for the BITRIX_SM_SALE_UID cookie, which makes it easier for remote attackers to guess the cookie value and bypass authentication via a brute force attack.

← Browse all CVEs View on cve.org ↗