Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-6313

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-6313
Last Modified 11 Dec 2012 01:56:30
Published 11 Dec 2012 07:18:37
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-6313

Summary

simple-gmail-login.php in the Simple Gmail Login plugin before 1.1.4 for WordPress allows remote attackers to obtain sensitive information via a request that lacks a timezone, leading to disclosure of the installation path in a stack trace.

Vulnerable Systems

Application

  • Simple Gmail Login 1.1.2

  • Simple Gmail Login 1.1.3


References

CONFIRM - http://wordpress.org/extend/plugins/simple-gmail-login/changelog/

BUGTRAQ - 20121207 Update on CVE assigned for Wordpress Plugin Simple Gmail Login


Last Updated: 27 May 2016 10:47:22