Vulnerabilities > Bryce Hamrick
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-06-27 | CVE-2012-3798 | Information Exposure vulnerability in Bryce Hamrick Janrain Capture 6.X1.0/7.X1.0 The Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when creating a local user account, allows attackers to obtain part of the initial input used to generate passwords, which makes it easier to conduct brute force password guessing attacks. | 5.0 |
2012-06-27 | CVE-2012-2727 | Improper Input Validation vulnerability in Bryce Hamrick Janrain Capture 6.X1.0/7.X1.0 Open redirect vulnerability in the Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when synchronizing user data, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination parameter. | 5.8 |