Back to search
CVE-2007-5364
Published: Oct 11, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed by CVE because PHP encounters a fatal function-call error on a direct request for payments/ideal_process.php
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
3212
third-party-advisory
x_refsource_SREASON
20071005 [Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN
mailing-list
x_refsource_BUGTRAQ
25998
vdb-entry
x_refsource_BID
20071009 Viart Shopping Cart Directory Transversal
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now