6.1 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.7%
CodeThat ShoppingCart 1.3.1 stores config.ini under the web root, which allows remote attackers to obtain sensitive information via a direct request.
lostmon.blogspot.com/2005/05/codethat-shoppingcart-critical.html
secunia.com/advisories/15251
securitytracker.com/id?1013924
www.osvdb.org/16157
www.securityfocus.com/bid/13560