CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Interspire: >> Shopping Cart >> 4.0.1 Security Vulnerabilities

CVE-2009-0412

The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote attackers to bypass authentication and obtain administrative access by reusing the RememberToken cookie after a failed admin login attempt.

CVSS Score

7.5

EPSS Score

0.004

Published

2009-02-03

Page 1

Vulnerabilities

Vulnerable Software

Interspire: >> Shopping Cart >> 4.0.1 Security Vulnerabilities

Products

Pricing

Contact Us