Vulnerabilities > CVE-2001-0985 - Unspecified vulnerability in Hassan Consulting Shopping Cart 1.23
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Hassan Consulting Shopping Cart 1.23 Arbitrary Command Execution Vulnerability. CVE-2001-0985. Remote exploit for cgi platform |
id | EDB-ID:21104 |
last seen | 2016-02-02 |
modified | 2001-09-08 |
published | 2001-09-08 |
reporter | Alexey Sintsov |
source | https://www.exploit-db.com/download/21104/ |
title | Hassan Consulting Shopping Cart 1.23 - Arbitrary Command Execution Vulnerability |