The files function in the administration section in CS-Cart 4.6.2 and earlier allows attackers to execute arbitrary PHP code via vectors involving a custom page.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-11-28T15:00:00

Updated: 2024-08-05T19:57:27.597Z

Reserved: 2017-10-20T00:00:00

Link: CVE-2017-15673

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2017-11-28T15:29:00.197

Modified: 2017-12-20T21:04:33.557

Link: CVE-2017-15673

cve-icon Redhat

No data.