Insufficient Access Control in Dansie Shopping Cart Allows Remote Information Disclosure

Insufficient Access Control in Dansie Shopping Cart Allows Remote Information Disclosure

CVE-2005-2217 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to obtain sensitive information such as program variables.

Learn more about our Web App Pen Testing.