Submit #501211: ShopXO ShopXO enterprise-level e-commerce system <=6.4.0 Template injectioninfo

TitelShopXO ShopXO enterprise-level e-commerce system <=6.4.0 Template injection
BeschreibungShopXO is an open-source enterprise-level e-commerce system developed by ShopXO. In versions 6.4 and earlier, a vulnerability classified as critical was discovered. The incomplete filtering in ThemeAdminService allows for remote code execution (RCE).
Quelle⚠️ https://github.com/jmx0hxq/Vulnerability-learning/blob/main/shopxo-rce.md
Benutzer
 jmx0hxq (UID 63891)
Einreichung14.02.2025 14:57 (vor 1 Jahr)
Moderieren23.02.2025 08:00 (9 days later)
StatusAkzeptiert
VulDB Eintrag296601 [ShopXO bis 6.4.0 Template ThemeAdminService.php erweiterte Rechte]
Punkte16

Want to stay up to date on a daily basis?

Enable the mail alert feature now!