Dcscripts Dcshop vulnerabilities
2 known vulnerabilities affecting dcscripts/dcshop.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2002-0492P4MEDIUMCVSS 5.0PoCv1.002_beta2002-08-12
CVE-2002-0492 [MEDIUM] CVE-2002-0492: dcshop.cgi in DCShop 1.002 Beta allows remote attackers to delete arbitrary setup files via a null c
dcshop.cgi in DCShop 1.002 Beta allows remote attackers to delete arbitrary setup files via a null character in the database parameter.
nvd
CVE-2001-0821P4MEDIUMCVSS 5.0PoCv1.002_beta2001-12-06
CVE-2001-0821 [MEDIUM] CVE-2001-0821: The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, whic
The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via an HTTP GET request for (1) orders.txt or (2) auth_user_file.txt.
nvd