The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form variables.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2001-01-22T05:00:00

Updated: 2024-08-08T05:14:20.457Z

Reserved: 2000-04-26T00:00:00

Link: CVE-2000-0254

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2000-04-14T04:00:00.000

Modified: 2024-11-20T23:32:04.780

Link: CVE-2000-0254

cve-icon Redhat

No data.