Unrated severityNVD Advisory· Published May 24, 2005· Updated Apr 16, 2026

CVE-2005-1733

Description

Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt.

Affected products

Metro Marketing/Cookie Cart
cpe:2.3:a:metro_marketing:cookie_cart:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdExploit
www.soulblack.com.ar/repo/papers/cookiec_advisory.txtnvdExploit
marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000