VYPR
Unrated severityNVD Advisory· Published May 30, 2014· Updated Jun 17, 2026

CVE-2013-6788

CVE-2013-6788

Description

The Bitrix e-Store module before 14.0.1 for Bitrix Site Manager uses sequential values for the BITRIX_SM_SALE_UID cookie, which makes it easier for remote attackers to guess the cookie value and bypass authentication via a brute force attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:bitrix:bitrix_e-store_module:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bitrix:bitrix_e-store_module:*:*:*:*:*:*:*:*range: <=14.0.0
    • (no CPE)range: <14.0.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.