← Back to CVEs
CVE-2002-0409
N/ADescription
orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated on www.ibuyspystore.com, allows remote attackers to view the orders of other users by modifying the OrderID parameter.
CVE Details
CVSS v3.1 ScoreN/A
Published7/26/2002
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0
Affected Products
microsoft:.net_framework
References
http://marc.info/?l=bugtraq&m=101518860823788&w=2(cve@mitre.org)
http://marc.info/?l=bugtraq&m=101518860823788&w=2(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.