X-Cart 3.4.3 allows remote attackers to execute arbitrary commands via the perl_binary argument in (1) upgrade.php or (2) general.php.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/9560 | Exploit Patch Vendor Advisory |
http://marc.info/?l=bugtraq&m=107582648326448&w=2 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/15034 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2004-11-22 21:00
Updated : 2017-07-10 18:30
NVD link : CVE-2004-0241
Mitre link : CVE-2004-0241
JSON object : View
CWE
Products Affected
qualiteam
- x-cart