CVE-2013-1465 in CubecartИнформация

Сводка

по MITRE

The Cubecart::_basket method in classes/cubecart.class.php in CubeCart 5.0.0 through 5.2.0 allows remote attackers to unserialize arbitrary PHP objects via a crafted shipping parameter, as demonstrated by modifying the application configuration using the Config object.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Резервировать

29.01.2013

Раскрытие

08.02.2013

Модерация

принято

Вход

VDB-63537

Эксплойт

Скачать

EPSS

0.07086

KEV

Нет

Деятельности

Очень низкий

Источники

Want to stay up to date on a daily basis?

Enable the mail alert feature now!