Description
EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information via a direct request.
Exploits (1)
References (6)
Core 6
Core References
Various Sources x_refsource_misc
http://www.earlyimpact.com/pdf/ProductCart_Security_Tips.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/9816
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/438189/100/200/threaded
Third Party Advisory mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2003-q3/0081.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/8112
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/9195
Scores
EPSS
0.0750
EPSS Percentile
91.8%
Details
Status
published
Products (27)
early_impact/productcart
1.1
early_impact/productcart
1.2
early_impact/productcart
1.3
early_impact/productcart
1.4
early_impact/productcart
1.5
early_impact/productcart
1.6_b
early_impact/productcart
1.6_b001
early_impact/productcart
1.6_b002
early_impact/productcart
1.6_b003
early_impact/productcart
1.6_br
... and 17 more
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026