exploitDog

CVE-2005-2477

Опубликовано: 05 авг. 2005

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

shop_display_products.php in Naxtor Shopping Cart 1.0 allows remote attackers to obtain sensitive information via a cat_id with a "'" (single quote), which reveals the path in an error message, possibly due to an SQL injection vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:naxtor:shopping_cart:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00401

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fw85-q2mv-g343

github

почти 4 года назад

shop_display_products.php in Naxtor Shopping Cart 1.0 allows remote attackers to obtain sensitive information via a cat_id with a "'" (single quote), which reveals the path in an error message, possibly due to an SQL injection vulnerability.

EPSS

Процентиль: 60%

0.00401

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other