source: http://www.securityfocus.com/bid/8860/info Dansie Shopping Cart is reported to be prone to path disclosre issue in the 'db' parameter of 'cart.pl' that may lead to an attacker gaining sensitive information about the installation path of the system. Information gained by exploiting this attack may aid an attacker in launching further attacks against a vulnerable system. http://www.example.com/cgi-bin/cart.pl?db='
Related ExploitsTrying to match CVEs (1): CVE-2003-1517
Trying to match OSVDBs (1): 2686
Other Possible E-DB Search Terms: Dansie Shopping Cart
|2000-04-14||Dansie Shopping Cart 3.0.4 - Multiple Vulnerabilities||tombow & Randy Janinda|