Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2001-0821

Published: 06/12/2001 Updated: 19/12/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 510
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Dcscripts

Vulnerability Summary

The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote malicious users to read sensitive data via an HTTP GET request for (1) orders.txt or (2) auth_user_file.txt.

Vulnerable Product Search on Vulmon Subscribe to Product

dcscripts dcshop 1.002_beta

Exploits

Exploit DB: DC Scripts DCShop Beta 1.0 02 - File Disclosure (2)
source: wwwsecurityfocuscom/bid/2889/info DCShop is a GCI-based ecommerce system from DCScripts Under certain configurations, a beta version of this product can allow a remote user to request and obtain files containing confidential order data, including credit card and other private customer information, as well as the DCShop admnist ...
Exploit DB: DC Scripts DCShop Beta 1.0 02 - File Disclosure (1)
source: wwwsecurityfocuscom/bid/2889/info DCShop is a GCI-based ecommerce system from DCScripts Under certain configurations, a beta version of this product can allow a remote user to request and obtain files containing confidential order data, including credit card and other private customer information, as well as the DCShop admnistra ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/bugtraq/2001-06/0233.htmlhttp://www.securityfocus.com/bid/2889http://www.dcscripts.com/dcforum/dcshop/44.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/6707https://nvd.nist.govhttps://www.exploit-db.com/exploits/20939/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook