Vulnerability Description
Turnkey Web Tools SunShop Shopping Cart allows remote attackers to obtain sensitive information via a phpinfo action to (1) index.php, (2) admin/index.php, and (3) admin/adminindex.php, which executes the PHP phpinfo function. NOTE: The vendor has disputed this issue, saying that "Having this in the code makes it easier for us to troubleshoot when issues arise on individual carts. For someone to have a script to do this type of search would require that they know where your shop is actually located. I dont think it really can be construde [sic] as a security issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Turnkey Solutions | Sunshop Shopping Cart | 3.0 |
References
- http://secunia.com/advisories/17832Vendor Advisory
- http://www.turnkeywebtools.com/forum/showpost.php?p=9874&postcount=6Exploit
- http://www.turnkeywebtools.com/forum/showthread.php?t=2384ExploitPatch
- http://secunia.com/advisories/17832Vendor Advisory
- http://www.turnkeywebtools.com/forum/showpost.php?p=9874&postcount=6Exploit
- http://www.turnkeywebtools.com/forum/showthread.php?t=2384ExploitPatch
FAQ
What is CVE-2005-4787?
CVE-2005-4787 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Turnkey Web Tools SunShop Shopping Cart allows remote attackers to obtain sensitive information via a phpinfo action to (1) index.php, (2) admin/index.php, and (3) admin/adminindex.php, which executes...
How severe is CVE-2005-4787?
CVE-2005-4787 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4787?
Check the references section above for vendor advisories and patch information. Affected products include: Turnkey Solutions Sunshop Shopping Cart.