Unrated severityNVD Advisory· Published Jul 26, 2002· Updated Jun 16, 2026
CVE-2002-0409
CVE-2002-0409
Description
orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated on www.ibuyspystore.com, allows remote attackers to view the orders of other users by modifying the OrderID parameter.
Affected products
1- cpe:2.3:a:microsoft:.net_framework:1.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- marc.infonvd
News mentions
0No linked articles in our index yet.