Описание
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
Ссылки
- ExploitPatch
- PatchVendor Advisory
- ExploitVendor Advisory
- ExploitPatch
- PatchVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:coxco_support:a-cart:2.0:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:metacart:2.sql:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:midicart_asp:*:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:midicart_asp_maxi:*:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:midicart_asp_plus:*:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:salescart-pro:*:*:*:*:*:*:*:*
cpe:2.3:a:coxco_support:salescart-std:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.07515
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
EPSS
Процентиль: 92%
0.07515
Низкий
5 Medium
CVSS2
Дефекты
CWE-200