Bytes Interactive's Web Shopper
-------------------------------

CVE Number: 
None

Details:
The shopper.cgi script was found on the system. This file is a part of the
Web Shopper package from Bytes Interactive. Insecure versions allow for
remote file viewing.

Fix:
It is recommended that the shopper.cgi file be edited so that the #$debug=1
line of code is changed to $debug=1 which prevents the remote file viewing.

Related URLs:
http://archives.neohapsis.com/archives/bugtraq/2000-10/0120.html

$Id: webshopper,v 1.1 2000/11/06 15:34:31 loveless Exp $
