cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to cause a denial of service (excessive shopping carts) via a flood of requests.
viart viart shop 3.5