CVE-2000-1243 : Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user crede

Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers.

Published 2000-12-31 05:00:00

Updated 2018-10-19 15:29:02

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2000-1243

Probability of exploitation activity in the next 30 days: 0.64%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 79 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2000-1243

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2000-1243

http://www.securityfocus.com/archive/1/470457/100/0/threaded
http://archives.neohapsis.com/archives/bugtraq/2000-04/0086.html
http://archives.neohapsis.com/archives/bugtraq/2000-04/0071.html
http://archives.neohapsis.com/archives/bugtraq/2000-04/0051.html

CVEs referencing this url
http://archives.neohapsis.com/archives/bugtraq/2000-04/0066.html

Products affected by CVE-2000-1243

Dansie » Shopping Cart » Version: 3.04
cpe:2.3:a:dansie:shopping_cart:3.04:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2000-1243

Exploit prediction scoring system (EPSS) score for CVE-2000-1243

CVSS scores for CVE-2000-1243

References for CVE-2000-1243

Products affected by CVE-2000-1243