VYPR

Shopping Cart

by Hassan Consulting

CVEs (3)

  • CVE-2000-0921Dec 19, 2000
    risk 0.04cvss epss 0.08

    Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.

  • CVE-2001-0985Sep 8, 2001
    risk 0.03cvss epss 0.04

    shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter.

  • CVE-2021-47769Jan 15, 2026
    risk 0.00cvss epss 0.00

    Isshue Shopping Cart 3.5 contains a persistent cross-site scripting vulnerability in title input fields across stock, customer, and invoice modules. Attackers with privileged user accounts can inject malicious scripts that execute on preview, potentially enabling session…

VYPR — Vulnerability Intelligence