CVE-2000-0254

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Apr 14, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0254 is a vulnerability affecting the dansie shopping cart application's cart.pl file. This issue enables remote attackers to gain unauthorized access to the shopping cart database and configuration information by manipulating URLs containing the env, db, or vars form variables. This weakness poses a significant risk, as the exposed data could lead to sensitive information disclosure and potential unauthorized system modifications. Attackers can exploit this vulnerability to steal customer data or disrupt the e-commerce platform's functionality. It is essential for affected organizations to patch or mitigate this vulnerability promptly to secure their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share