Exploit Smartwin Technology CyberOffice Shopping Cart 2.0 - Price Modification

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
20247
Проверка EDB
  1. Пройдено
Автор
DELPHIS CONSULTING
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2000-0926
Дата публикации
2000-10-02
Код:
source: https://www.securityfocus.com/bid/1733/info

Smartwin Technology CyberOffice Shopping Cart is a shopping cart application for e-commerce enabled websites running Windows NT 4.0 or 2000.

The order form CyberOffice Shopping Cart utilizes can be easily modified by downloading the form locally and then resubmitting it to the target server containing the new values. Unit item prices can be modified to any arbitrary value. 

<input type="hidden" name="Item" value="Specified Value">
 
Источник
www.exploit-db.com

Похожие темы