Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6760


Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6760
Last Modified 28 Apr 2009 12:00:00
Published 28 Apr 2009 12:30:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain sensitive information via an unauthenticated add and save action for a shopping cart in cart_save.php, which reveals the SQL table names in an error message, related to code that mishandles the lack of a user_id parameter.

Vulnerable Systems


  • Viart Shop 3.5


SECTRACK - 1021497

BID - 33043

BUGTRAQ - 20081229 ViArt Shopping Cart v3.5 Multiple Remote Vulnerabilities

OSVDB - 53282

Last Updated: 27 May 2016 10:49:20