Sensitive Information Disclosure in MidiCart PHP Shopping Cart

Sensitive Information Disclosure in MidiCart PHP Shopping Cart

CVE-2005-1501 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

MidiCart PHP Shopping Cart allows remote attackers to obtain sensitive information via a direct request to (1) search_list.php, (2) item_list.php, or (3) item_show.php, which reveal the path in a PHP error message.

Learn more about our Web Application Penetration Testing UK.