7 lines
No EOL
432 B
Text
7 lines
No EOL
432 B
Text
source: http://www.securityfocus.com/bid/8860/info
|
|
|
|
Dansie Shopping Cart is reported to be prone to path disclosre issue in the 'db' parameter of 'cart.pl' that may lead to an attacker gaining sensitive information about the installation path of the system.
|
|
|
|
Information gained by exploiting this attack may aid an attacker in launching further attacks against a vulnerable system.
|
|
|
|
http://www.example.com/cgi-bin/cart.pl?db=' |