Vulnerabilities > CVE-2006-2863 - Unspecified vulnerability in Cs-Cart
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN cs-cart
exploit available
Summary
PHP remote file inclusion vulnerability in class.cs_phpmailer.php in CS-Cart 1.3.3 allows remote attackers to execute arbitrary PHP code via a URL in the classes_dir parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 7 |
Exploit-Db
| description | CS-Cart. CVE-2006-2863. Webapps exploit for php platform |
| file | exploits/php/webapps/1872.txt |
| id | EDB-ID:1872 |
| last seen | 2016-01-31 |
| modified | 2006-06-03 |
| platform | php |
| port | |
| published | 2006-06-03 |
| reporter | Kacper |
| source | https://www.exploit-db.com/download/1872/ |
| title | CS-Cart <= 1.3.3 - classes_dir Remote File Include Vulnerability |
| type | webapps |
References
- http://secunia.com/advisories/20440
- http://secunia.com/advisories/20440
- http://www.attrition.org/pipermail/vim/2006-June/000824.html
- http://www.attrition.org/pipermail/vim/2006-June/000824.html
- http://www.securityfocus.com/bid/18263
- http://www.securityfocus.com/bid/18263
- http://www.vupen.com/english/advisories/2006/2125
- http://www.vupen.com/english/advisories/2006/2125
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26911
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26911
- https://www.exploit-db.com/exploits/1872
- https://www.exploit-db.com/exploits/1872