CVE-2002-1798

MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to 1 upload arbitrary php files via a direct request to admin/upload.php or 2 access sensitive information via a direct request to admin/creditcardinfo.php...