Vulnerabilities > CVE-2000-0922 - Unspecified vulnerability in Bytes Interactive web Shopper 1.0/2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in Bytes Interactive Web Shopper shopping cart program (shopper.cgi) 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the newpage parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | Bytes Interactive Web Shopper 1.0/2.0 Directory Traversal Vulnerability. CVE-2000-0922. Remote exploit for cgi platform |
id | EDB-ID:20280 |
last seen | 2016-02-02 |
modified | 2000-10-08 |
published | 2000-10-08 |
reporter | f0bic |
source | https://www.exploit-db.com/download/20280/ |
title | bytes interactive Web shopper 1.0/2.0 - Directory Traversal Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | HTTP_WEBSHOPPER.NASL |
description | The remote host contains is running Byte |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10533 |
published | 2000-10-10 |
reporter | This script is Copyright (C) 2000-2018 Thomas Reinke |
source | https://www.tenable.com/plugins/nessus/10533 |
title | Bytes Interactive Web Shopper shopper.cgi Traversal Arbitrary File Access |
code |
|