CVE-2000-0136

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Feb 1, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0136 is a vulnerability affecting the Cart32 shopping cart application. Hidden form fields in the software can be manipulated by remote users, permitting them to modify sensitive purchase information undetected. This issue poses a significant risk to the integrity and confidentiality of customer orders. Attackers could potentially alter order details, including prices or delivery addresses, leading to financial loss or unauthorized access to user data. Users of the Cart32 shopping cart are advised to apply the available patch or upgrade to a secure version as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/LEzHnI
https://www.cve.org/CVERecord?id=CVE-2000-0136
https://nvd.nist.gov/vuln/detail/CVE-2000-0136

Back to Vulnerability Database

CVE-2000-0136

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations