Medium
CVSS 5.0
Overview
cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an invalid db parameter, which leaks the path in an error message.
CVE-2003-1517
cart.pl in Dansie shopping cart allows remote attackers to obtain the installati...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 5.0 (MEDIUM)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.