Invia #501211: ShopXO ShopXO enterprise-level e-commerce system <=6.4.0 Template injectioninformazioni

TitoloShopXO ShopXO enterprise-level e-commerce system <=6.4.0 Template injection
DescrizioneShopXO is an open-source enterprise-level e-commerce system developed by ShopXO. In versions 6.4 and earlier, a vulnerability classified as critical was discovered. The incomplete filtering in ThemeAdminService allows for remote code execution (RCE).
Fonte⚠️ https://github.com/jmx0hxq/Vulnerability-learning/blob/main/shopxo-rce.md
Utente
 jmx0hxq (UID 63891)
Sottomissione14/02/2025 14:57 (1 Anno fa)
Moderazione23/02/2025 08:00 (9 days later)
StatoAccettato
Voce VulDB296601 [ShopXO fino a 6.4.0 Template ThemeAdminService.php escalationi di privilegi]
Punti16

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!