CVE-2021-20778: Improper Access Control

July 1, 2021 (updated June 28, 2022)

Improper access control vulnerability in EC-CUBE (EC-CUBE 4 series) allows a remote attacker to bypass access restriction and obtain sensitive information via unspecified vectors.

References

nvd.nist.gov/vuln/detail/CVE-2021-20778
www.ec-cube.net/info/weakness/weakness.php?id=80

Code Behaviors & Features

Detect and mitigate CVE-2021-20778 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →