The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form variables.Referenceshttp://www.securityfocus.com/bid/1115https://exchange.xforce.ibmcloud.com/vulnerabilities/4954
