5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.006 Low
EPSS
Percentile
78.0%
hisa_cart from Hisanaga Electric Co.Ltd is a shopping cart module for XOOPS. hisa_cart contains a vulnerability allowing the disclosure of users’ information.
A remote attacker could obtain information of registered users.
Update the Software
An update is being distributed to registered users.
Update to the latest version according to the information provided by the vendor.
It is recommended that users should not use hisa_cart v1.29 and earlier.