CVE-2000-0135
CVSS 2.0 Score 7.5 of 10 (high)
Details
Published Feb 1, 2000
Updated: Nov 20, 2024
Summary
CVE-2000-0135 is a vulnerability affecting the @Retail shopping cart application. This issue enables remote users to manipulate sensitive purchase information by taking advantage of hidden form fields. An attacker can alter prices, quantities, or other data in real-time, potentially leading to significant financial loss or unauthorized access to customer information. This vulnerability poses a severe risk to e-commerce platforms using the @Retail shopping cart application and requires immediate remediation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share