Multiple Vendor e-commerce Shopping Cart Information Disclosure Vulnerability

Multiple Vendor e-commerce Shopping Cart Information Disclosure Vulnerability

Multiple ecommerce products are prone to an information-disclosure issue.

The affected packages may not have been properly configured and maintained. Key records are created unencrypted and world-readable. As a result, an attacker exploiting this vulnerability will be able to obtain detailed private customer information, including credit card numbers, order details, addresses, telephone numbers, etc.