Summary
Zen Cart is prone to an information-disclosure vulnerability because it fails to sufficiently sanitize user-supplied data.
An attacker can exploit this issue to view local files in the context of the webserver process. This may allow the attacker to obtain sensitive information
other attacks are also possible.
References
Severity
Classification
-
CVE CVE-2009-4321 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities