2 matches found
CVE-2000-0254
The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form variables...
CVE-2000-0254
The CVE-2000-0254 entry concerns the Dansie Shopping Cart. The connected Nessus plugin notes that the script /cart/cart.cgi is present and, if the Dansie Shopping Cart is older than version 3.0.8, it very likely contains a backdoor that allows arbitrary command execution on the remote host. The C...