Vulnerabilities > Profitcode > Ppalcart > 2.5.ee
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-11 | CVE-2006-4672 | Code Injection vulnerability in Profitcode Ppalcart 2.5Ee PHP remote file inclusion vulnerability in profitCode ppalCart 2.5 EE, possibly a component of PayProCart, allows remote attackers to execute arbitrary PHP code via a URL in the (1) proMod parameter to (a) index.php, or the (2) docroot parameter to (b) index.php or (c) mainpage.php. | 7.5 |