cbcvebase.
CVE-2006-2948
published 2006-06-12

CVE-2006-2948: A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and…

PriorityP427medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.50%
71.1th percentile
A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and password information.

Affected

1 ranges
VendorProductVersion rangeFixed in
alan_warda-cart<= 2.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.