Interspire Shopping Cart Cookie Authentication Bypass Vulnerability

Interspire Shopping Cart is prone to an authentication-bypass vulnerability because it fails to adequately verify user credentials when setting cookie-based authentication tokens.

Attackers can exploit this issue to gain unauthorized access to the affected application, which may aid in further attacks.

Interspire Shopping Cart 4.0.1 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus