CVE-2000-1001

CVE-2000-1001

EPSS 1.6%

add_2_basket.asp in Element InstantShop allows remote attackers to modify price information via the "price" hidden form variable.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://marc.info/?l=bugtraq&m=97240616129614&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5402 http://www.osvdb.org/6487