Perlshop Security Vulnerabilities - February

CVE-1999-1374

perlshop.cgi shopping cart program stores sensitive customer information in directories and files that are under the web root, which allows remote attackers to obtain that information via an HTTP request.