Vulnerabilities > CVE-2000-0921 - Unspecified vulnerability in Hassan Consulting Shopping Cart

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
hassan-consulting
exploit available

Summary

Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.

Vulnerable Configurations

Part Description Count
Application
Hassan_Consulting
1

Exploit-Db

descriptionHassan Consulting Shopping Cart 1.18 Directory Traversal Vulnerability. CVE-2000-0921. Remote exploit for cgi platform
idEDB-ID:20281
last seen2016-02-02
modified2000-10-07
published2000-10-07
reporterf0bic
sourcehttps://www.exploit-db.com/download/20281/
titlehassan consulting shopping cart 1.18 - Directory Traversal Vulnerability