PHP remote file inclusion vulnerability in install.php in CS-Cart 1.3.3 allows remote attackers to execute arbitrary PHP code via a URL in the install_dir parameter. NOTE: CVE and third parties dispute this vulnerability because install_dir is defined before use
References
Configurations
History
07 Nov 2023, 02:00
Type | Values Removed | Values Added |
---|---|---|
Summary | PHP remote file inclusion vulnerability in install.php in CS-Cart 1.3.3 allows remote attackers to execute arbitrary PHP code via a URL in the install_dir parameter. NOTE: CVE and third parties dispute this vulnerability because install_dir is defined before use |
Information
Published : 2007-01-13 02:28
Updated : 2024-08-07 12:15
NVD link : CVE-2007-0230
Mitre link : CVE-2007-0230
CVE.ORG link : CVE-2007-0230
JSON object : View
Products Affected
cs-cart
- cs-cart
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')