Vulnerabilities > Codethat
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-16 | CVE-2005-1595 | Input Validation vulnerability in Codethat Shoppingcart 1.3.1 CodeThat ShoppingCart 1.3.1 stores config.ini under the web root, which allows remote attackers to obtain sensitive information via a direct request. | 5.0 |
2005-05-16 | CVE-2005-1594 | Input Validation vulnerability in Codethat Shoppingcart 1.3.1 SQL injection vulnerability in catalog.php for CodeThat ShoppingCart 1.3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2005-05-16 | CVE-2005-1593 | Input Validation vulnerability in Codethat Shoppingcart 1.3.1 Cross-site scripting (XSS) vulnerability in catalog.php for CodeThat ShoppingCart 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. network codethat | 6.8 |