vendor:
X-Cart
by:
BID, CVE, OSVDB, SECUNIA
7,5
CVSS
HIGH
Arbitrary Variable Overwriting
94
CWE
Product Name: X-Cart
Affected Version From: <= 4.1.3
Affected Version To: None
Patch Exists: YES
Related CWE: CVE-2006-4904
CPE: a:qualiteam:x-cart
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: None
2006
X-Cart Arbitrary Variable Overwrite
X-Cart is a commercial web based eCommerce solution written in PHP and MySQL that allows for webmasters to host an online marketplace. Unfortunately an attacker may be able to execute arbitrary php code on an X-Cart installation by overwriting key configuration variables. However, because the vulnerability allows for any variables to be overwritten other attacks such as SQL Injection are probably possible as well.
Mitigation:
Upgrade to the latest version of X-Cart or delete the cmpi.php script that resides within the payments directory.
