Lucene search
HistoryDec 14, 2009 - 11:30 p.m.
CVE-2009-4322
zen cart
remote attack
information disclosure
cve-2009-4322
nvd
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.5%
extras/ipn_test_return.php in Zen Cart allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zen-cart:zen_cart | zen-cart zen cart | eq | * |
Related
prion
prion
Information disclosure
2009-12-14 23:30:00
Design/Logic Flaw
2009-12-14 23:30:00
cvelist
cvelist
CVE-2009-4322
2009-12-14 23:00:00
CVE-2009-4323
2022-10-03 16:24:02
cve
cve
CVE-2009-4323
2009-12-14 23:30:00
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.5%
Related for CVE-2009-4322