This page aggregates publicly disclosed CVE and security risk information related to spidersales, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2004-0351 | Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local users with access to the database to decrypt data. | [email protected] | 2.1 | 0.07% | 2004-11-23 | 2026-04-16 |
| CVE-2004-0350 | SpiderSales shopping cart does not enforce a minimum length for the private key, which can make it easier for local users to obtain the private key by factoring. | [email protected] | 2.1 | 0.08% | 2004-11-23 | 2026-04-16 |
| CVE-2004-0348 | SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arbitrary SQL via the userId parameter. | [email protected] | 10.0 | 0.56% | 2004-11-23 | 2026-04-16 |