Unrated severityNVD Advisory· Published May 24, 2000· Updated Apr 16, 2026

CVE-2000-0396

Description

The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.

Affected products

Pacific Software/Carello
cpe:2.3:a:pacific_software:carello:1.2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2000-05/0285.htmlnvd
www.securityfocus.com/bid/1245nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000