← Back

Authorize.net Module

authorize.net_module

Vendor: Irata • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2012-5803
2Irata
Ubercart
2Authorize.net Module
Ubercart
Apr 29, 2026
Nov 4, 2012
N/A· v4
N/A· v3
5.8 MEDIUM· v2
The Authorize.Net module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attac...Show more
The Authorize.Net module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.Show less