VYPR

Metacart

by Metalinks

CVEs (2)

  • CVE-2002-1432Apr 11, 2003
    risk 0.04cvss epss 0.08

    MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.

  • CVE-2008-6051Feb 4, 2009
    risk 0.00cvss epss 0.01

    MetaCart Free stores metacart.mdb under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords via a direct request.