vendor:
PhpShop-Core
by:
Cold Zero
7,5
CVSS
HIGH
Remote File Include Vulnerability
98
CWE
Product Name: PhpShop-Core
Affected Version From: 0.9.0 RC1
Affected Version To: 0.9.0 RC1
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006
PhpShop-Core (append.php) Remot File Include Vulnerability
A remote file include vulnerability exists in PhpShop-Core v0.9.0 RC1. An attacker can exploit this vulnerability to include a remote file containing malicious code, resulting in arbitrary code execution on the vulnerable system.
Mitigation:
Upgrade to the latest version of PhpShop-Core.
