Description
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
Remediation
References
Related Vulnerabilities
Joomla CVE-2019-7739 Vulnerability (CVE-2019-7739)
WordPress Plugin Scout bazar Cross-Site Scripting (1.3.3)
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll Unspecified Vulnerability (1.5.8.5)
WordPress Plugin YITH WooCommerce Compare PHP Object Injection (2.0.9)
WordPress Plugin Advanced ads Management by Inazo Cross-Site Scripting (1.3)