PT-2004-1769 · Comersus · Comersus Cart

Thomas Ryan

Published

2004-07-13

Updated

2017-07-11

CVE-2004-0682

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Comersus Cart versions prior to 5.098

Description The issue allows remote attackers to modify item prices by directly altering them in the URL, specifically affecting the comersus gatewayPayPal.asp file.

Recommendations For versions prior to 5.098, update to version 5.098 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0682

Affected Products

Comersus Cart

PT-2004-1769 · Comersus · Comersus Cart

CVE-2004-0682

Related Identifiers

Affected Products

References · 6