Unrated severityNVD Advisory· Published Oct 11, 2007· Updated Apr 23, 2026

CVE-2007-5364

Description

Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed by CVE because PHP encounters a fatal function-call error on a direct request for payments/ideal_process.php

Affected products

Viart/Shopping Cart
cpe:2.3:a:viart:shopping_cart:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securityreason.com/securityalert/3212nvd
www.securityfocus.com/archive/1/481658/100/0/threadednvd
www.securityfocus.com/archive/1/481848nvd
www.securityfocus.com/bid/25998nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000