Vulnerability Details : CVE-2006-2823
Katrien De Graeve a.shopKart 2.0 (aka ashopKart20) stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) admin/scart.mdb and possibly (2) admin/scart97.mdb.
Exploit prediction scoring system (EPSS) score for CVE-2006-2823
Probability of exploitation activity in the next 30 days: 0.95%
CVSS scores for CVE-2006-2823
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|