Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown
CVE-2004-0350
Disclosure Date: November 23, 2004 (last updated February 22, 2025)
SpiderSales shopping cart does not enforce a minimum length for the private key, which can make it easier for local users to obtain the private key by factoring.
0
Attacker Value
Unknown
CVE-2004-0351
Disclosure Date: November 23, 2004 (last updated February 22, 2025)
Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local users with access to the database to decrypt data.
0
Attacker Value
Unknown
CVE-2004-0348
Disclosure Date: November 23, 2004 (last updated February 22, 2025)
SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arbitrary SQL via the userId parameter.
0
