CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0439

Cross-site scripting vulnerability in CaupoShop 1.30a and earlier, and possibly CaupoShopPro, allows remote attackers to execute arbitrary Javascript and steal credit card numbers or delete items by injecting the script into new customer information fields such as the message field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.iss.net/security_center/static/8431.php
http://www.securityfocus.com/archive/1/261218
http://www.securityfocus.com/bid/4270
http://www.iss.net/security_center/static/8431.php
http://www.securityfocus.com/archive/1/261218
http://www.securityfocus.com/bid/4270

Products affected by CVE-2002-0439

Caupo.net » Cauposhop » Version: Any

cpe:2.3:a:caupo.net:cauposhop:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0439

Products

Pricing

Contact Us