CVE-2014-6779

The Cart App aka com.virtecha.mobilewallet application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Cart App aka com.virtecha.mobilewallet application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6779

CVE-2014-6779 affects the Cart App (com.virtecha.mobilewallet) for Android version 1.5. The connected documents confirm that the app does not verify X.509 certificates when establishing SSL connections, which enables man-in-the-middle attackers to spoof servers and obtain sensitive information vi...

CVE-2000-0254

The CVE-2000-0254 entry concerns the Dansie Shopping Cart. The connected Nessus plugin notes that the script /cart/cart.cgi is present and, if the Dansie Shopping Cart is older than version 3.0.8, it very likely contains a backdoor that allows arbitrary command execution on the remote host. The C...

CVE-2000-0134

The Check It Out shopping cart application contains a vulnerability that allows remote attackers to modify sensitive purchase information via hidden form fields. Described across CVE-2000-0134 sources, this flaw enables unauthenticated remote access with partial confidentiality and integrity impa...