CyberSec.Space Logo
Back to CVE Browser

CVE-2000-0252

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0430%
EPSS Percentile33.98th
PublishedApr 11, 2000
Last ModifiedApr 16, 2026

Vulnerability Description

The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable.

Affected Platforms (CPE)

πŸ“¦
Craig Dansie

Dansie Shopping Cart

= 3.0.4

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2000-04/0051.html
πŸ”— http://www.securityfocus.com/bid/1115
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/4975
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2000-04/0051.html
πŸ”— http://www.securityfocus.com/bid/1115
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/4975

Related Vulnerabilities

CVE-2000-025310.0

The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fiel...

CVE-2000-02545.0

The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration inform...

CVE-2000-12435.0

Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to ...

CVE-2005-22175.0

Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attack...