Vulnerabilities > CVE-2006-6463 - Unspecified vulnerability in Midicart Software Midicart PHP Shopping Cart

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

midicart-software

NVD

Published: 2006-12-11

Updated: 2024-02-14

Summary

Unrestricted file upload vulnerability in admin/add.php in Midicart allows remote authenticated users to upload arbitrary .php files, and possibly other files, to the images/ directory under the web root.

Vulnerable Configurations

Part	Description	Count
Application	Midicart_Software Midicart Software Midicart PHP Shopping Cart *	1

References

http://cupu.us/adv/15-iFX-2006-adv-midicart-phpbackdoor.txt
http://www.securityfocus.com/bid/21500
http://secunia.com/advisories/23296
http://securityreason.com/securityalert/2016
http://www.securityfocus.com/archive/1/453912/100/0/threaded