CVE-2013-2313 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2013-2313

Deferred

More Info Official Page

Source-vultures@jpcert.or.jp

Published At-29 May, 2013 | 19:55

Updated At-11 Apr, 2025 | 00:51

Session fixation vulnerability in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to hijack web sessions via unspecified vectors.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.0	MEDIUM	AV:N/AC:H/Au:N/C:P/I:P/A:N

Type: Primary

Version: 2.0

Base score: 4.0

Base severity: MEDIUM

Vector:

AV:N/AC:H/Au:N/C:P/I:P/A:N

CPE Matches

lockon>>ec-cube>>2.11.0

cpe:2.3:a:lockon:ec-cube:2.11.0:*:*:*:*:*:*:*

lockon>>ec-cube>>2.11.1

cpe:2.3:a:lockon:ec-cube:2.11.1:*:*:*:*:*:*:*

lockon>>ec-cube>>2.11.2

cpe:2.3:a:lockon:ec-cube:2.11.2:*:*:*:*:*:*:*

lockon>>ec-cube>>2.11.3

cpe:2.3:a:lockon:ec-cube:2.11.3:*:*:*:*:*:*:*

lockon>>ec-cube>>2.11.4

cpe:2.3:a:lockon:ec-cube:2.11.4:*:*:*:*:*:*:*

lockon>>ec-cube>>2.11.5

cpe:2.3:a:lockon:ec-cube:2.11.5:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.0

cpe:2.3:a:lockon:ec-cube:2.12.0:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.1

cpe:2.3:a:lockon:ec-cube:2.12.1:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.2

cpe:2.3:a:lockon:ec-cube:2.12.2:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.3

cpe:2.3:a:lockon:ec-cube:2.12.3:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.3en

cpe:2.3:a:lockon:ec-cube:2.12.3en:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.3enp1

cpe:2.3:a:lockon:ec-cube:2.12.3enp1:*:*:*:*:*:*:*

lockon>>ec-cube>>2.12.3enp2

cpe:2.3:a:lockon:ec-cube:2.12.3enp2:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-287	Primary	nvd@nist.gov

CWE ID: CWE-287

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://jvn.jp/en/jp/JVN00985872/index.html	vultures@jpcert.or.jp	N/A
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000042	vultures@jpcert.or.jp	N/A
http://svn.ec-cube.net/open_trac/changeset/22804	vultures@jpcert.or.jp	N/A
http://svn.ec-cube.net/open_trac/changeset/22805	vultures@jpcert.or.jp	N/A
http://www.ec-cube.net/info/weakness/weakness.php?id=40	vultures@jpcert.or.jp	N/A
http://jvn.jp/en/jp/JVN00985872/index.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000042	af854a3a-2127-422b-91ae-364da2661108	N/A
http://svn.ec-cube.net/open_trac/changeset/22804	af854a3a-2127-422b-91ae-364da2661108	N/A
http://svn.ec-cube.net/open_trac/changeset/22805	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ec-cube.net/info/weakness/weakness.php?id=40	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://jvn.jp/en/jp/JVN00985872/index.html

Source: vultures@jpcert.or.jp

Resource: N/A

Hyperlink: http://jvndb.jvn.jp/jvndb/JVNDB-2013-000042

Source: vultures@jpcert.or.jp

Resource: N/A

Hyperlink: http://svn.ec-cube.net/open_trac/changeset/22804

Source: vultures@jpcert.or.jp

Resource: N/A

Hyperlink: http://svn.ec-cube.net/open_trac/changeset/22805

Source: vultures@jpcert.or.jp

Resource: N/A

Hyperlink: http://www.ec-cube.net/info/weakness/weakness.php?id=40

Source: vultures@jpcert.or.jp

Resource: N/A

Hyperlink: http://jvn.jp/en/jp/JVN00985872/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://jvndb.jvn.jp/jvndb/JVNDB-2013-000042

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://svn.ec-cube.net/open_trac/changeset/22804

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://svn.ec-cube.net/open_trac/changeset/22805

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.ec-cube.net/info/weakness/weakness.php?id=40

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A