Midicart PHP Information Disclosure Vulnerability

ID EDB-ID:21894
Type exploitdb
Reporter frog
Modified 2002-10-02T00:00:00


Midicart PHP Information Disclosure Vulnerability. CVE-2002-1798. Webapps exploit for php platform

                                            source: http://www.securityfocus.com/bid/5851/info

A problem with the default installation of Midicart PHP may make it possible for remote users to gain access to sensitive information.

The default installation of Midicart PHP does not place sufficient access control on files residing in the 'admin' folder. Files in this folder are meant to be accessed by privileged individuals and may contain sensitive information.