Lincolnloop

lincolnloop

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Authorize.net Echeck Module

authorize.net_echeck_module

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-5807 2Lincolnloop Zen Cart 2Authorize.net Echeck Module Zen Cart Apr 29, 2026 Nov 4, 2012 N/A· v4 N/A· v3 5.8 MEDIUM· v2 The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middl...Show more The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2012-5807

2Lincolnloop

Zen Cart

2Authorize.net Echeck Module

Zen Cart

Apr 29, 2026

Nov 4, 2012

N/A· v4

N/A· v3

5.8 MEDIUM· v2

The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middl...Show more