Vulnerability Details CVE-2004-0242
X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with (1) phpinfo command or (2) perlinfo command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.4%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2004-0242
-
cpe:2.3:a:qualiteam:x-cart:3.2.0
-
cpe:2.3:a:qualiteam:x-cart:3.2.1
-
cpe:2.3:a:qualiteam:x-cart:3.3.0
-
cpe:2.3:a:qualiteam:x-cart:3.3.2
-
cpe:2.3:a:qualiteam:x-cart:3.4.0
-
cpe:2.3:a:qualiteam:x-cart:3.4.11
-
cpe:2.3:a:qualiteam:x-cart:3.4.3