Smartwin Technology: >> Cyberoffice Shopping Cart >> 2.0 Security Vulnerabilities
The default installation of SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) installs the _private directory with world readable permissions, which allows remote attackers to obtain sensitive information.
CVSS Score
5.0
EPSS Score
0.059
Published
2000-12-19
SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) allows remote attackers to modify price information by changing the "Price" hidden form variable.
CVSS Score
7.5
EPSS Score
0.068
Published
2000-12-19