[prev in list] [next in list] [prev in thread] [next in thread]
List: bugtraq
Subject: Re: Shopping Carts exposing CC data
From: Bo Elkjaer <boo () DATASHOPPER ! DK>
Date: 1999-04-27 12:39:47
[Download RAW message or body]
Been doing some more searches for misconfigured webcarts exposing cc-information.
Seems like a pandora's box, that just opened.
Perlshop is vulnerable too if misconfigured:
Version?
Platforms?
Executable file: perlshop.cgi
Exposed directory: /store/customers/, /store/temp_customers/
Exposed orderinfo: Several files, eight-digit numbered names.
Status: adverware. Only requirement is to display a "powered by perlshop"-logo on
page.
Bo Elkjaer, Denmark
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic