Metro Marketing Cookie Cart — known CVE vulnerabilities
Every CVE whose affected-product data names Metro Marketing Cookie Cart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2005-1732 — CVSS 5.0 (medium): Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi.
CVE-2005-1733 — CVSS 5.0 (medium): Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain…