Database Exposure in MidiCart by Web Technologies
CVE-2002-1432

Currently unrated

Key Information:

Vendor: Coxco Support
Status: Midicart Asp; Salescart-std; Salescart-pro; A-cart
Vendor: CVE Published:; 11 April 2003

🔔 Create Coxco Support Vulnerability Alert

What is CVE-2002-1432?

MidiCart stores its midicart.mdb database file in the web document root, making it accessible to remote attackers. This configuration flaw allows unauthorized users to obtain sensitive information by directly accessing the database file, potentially leading to data breaches and compromise of user information. It is crucial for users of MidiCart to reconfigure their database file storage locations to enhance security.

References

http://www.securityfocus.com/bid/5438

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/9816.php

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/bugtraq/2002-08/00...

mailing-listx_refsource_BUGTRAQ

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 11, 2003
Vulnerability Reserved
Feb 5, 2003

JSON