Vulnerabilities > CVE-2002-0439 - Unspecified vulnerability in Caupo.Net Cauposhop
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting vulnerability in CaupoShop 1.30a and earlier, and possibly CaupoShopPro, allows remote attackers to execute arbitrary Javascript and steal credit card numbers or delete items by injecting the script into new customer information fields such as the message field.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |