CVE-2012-3802 - Tractable Petroleum

Description

Unspecified vulnerability in the Post Affiliate Pro (PAP) module for Drupal allows remote authenticated users to read the commissions of other users via unknown attack vectors.

Reference

http://drupal.org/node/1585648 http://www.securityfocus.com/bid/53589 http://www.openwall.com/lists/oss-security/2012/06/14/3 https://exchange.xforce.ibmcloud.com/vulnerabilities/75716