Vulnerabilities > CVE-2005-1005 - Unspecified vulnerability in Profitcode Payprocart 3.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded .. sequences in the ftoedit parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | ProfitCode Software PayProCart 3.0 Directory Traversal Vulnerability. CVE-2005-1005. Webapps exploit for php platform |
| id | EDB-ID:25338 |
| last seen | 2016-02-03 |
| modified | 2005-04-05 |
| published | 2005-04-05 |
| reporter | Diabolic Crab |
| source | https://www.exploit-db.com/download/25338/ |
| title | profitcode software payprocart 3.0 - Directory Traversal Vulnerability |