CVE-2005-2217

MEDIUM

5.0

CVSS Severity Score

EPSS Score0.1340%

EPSS Percentile0.03th

PublishedJul 12, 2005

Last ModifiedApr 16, 2026

Vulnerability Description

Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to obtain sensitive information such as program variables.

Affected Platforms (CPE)

📦

Craig Dansie

Dansie Shopping Cart

All versions

References & Advisories

🔗 http://securitytracker.com/id?1014396

Related Vulnerabilities

CVE-2000-025310.0

The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fiel...

CVE-2000-02525.0

The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form vari...

CVE-2000-02545.0

The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration inform...

CVE-2000-12435.0

Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to ...