Vulnerabilities > CVE-2009-1447 - Unspecified vulnerability in E-Cart Free Shopping Cart
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unrestricted file upload vulnerability in admin/editor/image.php in e-cart.biz Free Shopping Cart allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | e-cart.biz Shopping Cart Arbitrary File Upload Vulnerability. CVE-2009-1447. Webapps exploit for php platform |
file | exploits/php/webapps/8474.txt |
id | EDB-ID:8474 |
last seen | 2016-02-01 |
modified | 2009-04-17 |
platform | php |
port | |
published | 2009-04-17 |
reporter | ahmadbady |
source | https://www.exploit-db.com/download/8474/ |
title | e-cart.biz Shopping Cart Arbitrary File Upload Vulnerability |
type | webapps |