An unrestricted file upload at /public/admin/index.php?add_product of Ecommerce-Website v1.1.0 allows attackers to upload a webshell via the Product Image component.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-04T13:17:59
Updated: 2024-08-03T05:25:32.671Z
Reserved: 2022-03-21T00:00:00
Link: CVE-2022-27435
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-04-04T14:15:07.657
Modified: 2022-04-27T18:10:31.333
Link: CVE-2022-27435
Redhat
No data.