Cookie Cart
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2005-1733 | 0.00 | — | 0.00 | May 24, 2005 | Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt. | ||
| CVE-2005-1732 | 0.00 | — | 0.00 | May 24, 2005 | Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi. |
- CVE-2005-1733May 24, 2005risk 0.00cvss —epss 0.00
Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt.
- CVE-2005-1732May 24, 2005risk 0.00cvss —epss 0.00
Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi.