Vulnerabilities > CVE-2007-3446 - Unspecified vulnerability in Bugmall Shopping Cart
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
BugMall Shopping Cart 2.5 and earlier has a default username "demo" and password "demo," which allows remote attackers to obtain login access.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | BugMall Shopping Cart 2.5 (SQL/XSS) Multiple Remote Vulnerabilities. CVE-2007-3446,CVE-2007-3447,CVE-2007-3448. Webapps exploit for php platform |
| file | exploits/php/webapps/4103.txt |
| id | EDB-ID:4103 |
| last seen | 2016-01-31 |
| modified | 2007-06-25 |
| platform | php |
| port | |
| published | 2007-06-25 |
| reporter | t0pP8uZz |
| source | https://www.exploit-db.com/download/4103/ |
| title | bugmall shopping cart 2.5 sql/XSS Multiple Vulnerabilities |
| type | webapps |