CVE-2005-2217

MEDIUM

5.0

CVSS Severity Score

EPSS Score0.1340%

EPSS Percentile0.03th

Published2005年7月12日

Last Modified2026年4月16日

Vulnerability Description

Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to obtain sensitive information such as program variables.

Affected Platforms (CPE)

📦

Craig Dansie

Dansie Shopping Cart

All versions

References & Advisories

🔗 http://securitytracker.com/id?1014396

相关漏洞威胁

CVE-2000-025310.0

The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fiel...

CVE-2000-02525.0

The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form vari...

CVE-2000-02545.0

The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration inform...

CVE-2000-12435.0

Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to ...