Ezshopper@3.0 Security Vulnerabilities and Issues — Ezshopper@3.0 CVE List

Lucene search

Alex Heiphetz GroupEzshopper3.0

3 matches found

CVE•added 2001/01/09 5:0 a.m.•64 views

CVE-2000-1092

loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter.

5CVSS6.5AI score0.04092EPSS

CVE•added 2000/03/22 5:0 a.m.•52 views

CVE-2000-0187

EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.

7.5CVSS7.1AI score0.13385EPSS

CVE•added 2000/03/22 5:0 a.m.•40 views

CVE-2000-0188

EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.

7.5CVSS7.1AI score0.025EPSS