CVE-2008-6759

Name of the Vulnerable Software and Affected Versions: ViArt Shop (aka Shopping Cart) version 3.5

Description: The issue allows remote attackers to obtain sensitive information via a URL in the POST DATA parameter to "manuals search.php", which reveals the installation path in an error message.

Recommendations: For version 3.5, consider restricting access to the "manuals search.php" file to minimize the risk of exploitation. As a temporary workaround, avoid using the POST DATA parameter in the affected API endpoint until the issue is resolved.