Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier might allow remote attackers to determine the existence of arbitrary files via directory traversal sequences in the client's DNS hostname (aka the REMOTE_HOST variable), related to the CookielessGenerateFilename and CookielessReadFile functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Vpasp Rocksalt International VP-ASP Shopping Cart 'shopsessionsubs.asp'目录遍历漏洞
Vulnerability Description
VP-ASP Shopping Cart是一款在线商店程序。 Rocksalt International VP-ASP Shopping Cart的shopsessionsubs.asp程序存在目录遍历漏洞,远程攻击者可通过客户端DNS主机名(即REMOTE_HOST变量)的目录遍历序列确定是否存在任意一个文件。
CVSS Information
N/A
Vulnerability Type
N/A