← CVECheck
HomeVulnerabilities

CVE-2002-0943 — MEDIUM severity vulnerability (MetaCart2.sql stores the user database under the web documen)

MetaCart2.sql stores the user database under the web document root without access controls, which allows remote attackers to obtain sensitive information such as passwords and credit card numbers via a direct request for metacart.mdb.

CVE IDCVE-2002-0943
SeverityMEDIUM
CVSS score6.4
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionMetaCart2.sql stores the user database under the web document root without access controls, which allows remote attackers to obtain sensitive information such as passwords and credit card numbers via a direct request for metacart.mdb.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →