CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0396

The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.036

EPSS Ranking 87.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2000-05/0285.html
http://www.securityfocus.com/bid/1245
http://archives.neohapsis.com/archives/bugtraq/2000-05/0285.html
http://www.securityfocus.com/bid/1245

Products affected by CVE-2000-0396

Pacific Software » Carello » Version: 1.2.1

cpe:2.3:a:pacific_software:carello:1.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0396

Products

Pricing

Contact Us