Back to search
CVE-2002-2310
Published: Oct 26, 2007
Modified: Sep 16, 2024
PUBLISHED
Description
ClickCartPro 4.0 stores the admin_user.db data file under the web document root with insufficient access control on servers other than Apache, which allows remote attackers to obtain usernames and passwords.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
clickcartpro-unauth-database-access-access(9648)
vdb-entry
x_refsource_XF
1004825
vdb-entry
x_refsource_SECTRACK
http://www.securiteam.com/securitynews/5DP0T0K7PY.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now