Lucene search
MitreCVELIST:CVE-2005-1033HistoryApr 09, 2005 - 4:00 a.m.
CVE-2005-1033
2005-04-0904:00:00
mitre
www.cve.org
1
CubeCart 2.0.6 allows remote attackers to obtain sensitive information via an invalid (1) language parameter to index.php, (2) PHPSESSID parameter to index.php, (3) product parameter to tellafriend.php, (4) add parameter to view_cart.php, or (5) product parameter to view_product.php, which reveals the path in a PHP error message.
Related
exploitdb
exploitdb
CubeCart 2.0.x - 'view_cart.php?add' Full Path Disclosure
2005-04-06 00:00:00
CubeCart 2.0.x - 'index.php' Multiple Full Path Disclosures
2005-04-06 00:00:00
CubeCart 2.0.x - 'tellafriend.php?product' Full Path Disclosure
2005-04-06 00:00:00
nvd
nvd
CVE-2005-1033
2005-05-02 04:00:00
nessus
nessus
CubeCart <= 2.0.6 Multiple SQL Injections
2005-04-08 00:00:00
cve
cve
CVE-2005-1033
2005-05-02 04:00:00