CVE-2004-0293

Publication date

2004-03-18 05:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in ShopCartCGI 2.3 allows remote attackers to retrieve arbitrary files via a .. (dot dot) in a HTTP request to (1) gotopage.cgi or (2) genindexpage.cgi.