Vulnerabilities (CVE)

Filtered by vendor Dansie Subscribe
Filtered by product Shopping Cart
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-1517 1 Dansie 1 Shopping Cart 2024-11-20 5.0 MEDIUM N/A
cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an invalid db parameter, which leaks the path in an error message.
CVE-2000-1243 1 Dansie 1 Shopping Cart 2024-11-20 5.0 MEDIUM N/A
Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers.