MetaCart Free stores metacart.mdb under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords via a direct request.
Max CVSS
5.0
EPSS Score
0.16%
Published
2009-02-04
Updated
2018-10-11
1 vulnerabilities found