Craig Dansie Dansie Shopping Cart — known CVE vulnerabilities
Every CVE whose affected-product data names Craig Dansie Dansie Shopping Cart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2000-0253 — CVSS 10.0 (critical): The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fields.
CVE-2000-0252 — CVSS 5.0 (medium): The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable.
CVE-2000-0254 — CVSS 5.0 (medium): The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via…
CVE-2005-2217 — CVSS 5.0 (medium): Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to…