← CVECheck
HomeVulnerabilities

CVE-2002-1798 — CRITICAL severity vulnerability (MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers)

MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.

CVE IDCVE-2002-1798
SeverityCRITICAL
CVSS score9.1
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWECWE-425
StatusModified
Published2002-12-31
Last modified2026-04-16
DescriptionMidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →