CVE-2000-0254
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Summary
CVE-2000-0254 is a vulnerability affecting the dansie shopping cart application's cart.pl file. This issue enables remote attackers to gain unauthorized access to the shopping cart database and configuration information by manipulating URLs containing the env, db, or vars form variables. This weakness poses a significant risk, as the exposed data could lead to sensitive information disclosure and potential unauthorized system modifications. Attackers can exploit this vulnerability to steal customer data or disrupt the e-commerce platform's functionality. It is essential for affected organizations to patch or mitigate this vulnerability promptly to secure their systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.