Vulnerabilities > CVE-2006-0099 - Unspecified vulnerability in Valdersoft Shopping Cart 3.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN valdersoft
exploit available
Summary
PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Valdersoft Shopping Cart <= 3.0 Remote Command Execution Exploit. CVE-2006-0099. Webapps exploit for php platform |
| file | exploits/php/webapps/1401.pl |
| id | EDB-ID:1401 |
| last seen | 2016-01-31 |
| modified | 2006-01-03 |
| platform | php |
| port | |
| published | 2006-01-03 |
| reporter | cijfer |
| source | https://www.exploit-db.com/download/1401/ |
| title | Valdersoft Shopping Cart <= 3.0 - Remote Command Execution Exploit |
| type | webapps |
References
- http://downloads.securityfocus.com/vulnerabilities/exploits/cijfer-vscxpl.pl
- http://downloads.securityfocus.com/vulnerabilities/exploits/cijfer-vscxpl.pl
- http://www.securityfocus.com/bid/16126
- http://www.securityfocus.com/bid/16126
- https://www.exploit-db.com/exploits/1401
- https://www.exploit-db.com/exploits/1401