| Название | ShopXO ShopXO enterprise-level e-commerce system <=6.4.0 Template injection |
|---|
| Описание | ShopXO is an open-source enterprise-level e-commerce system developed by ShopXO. In versions 6.4 and earlier, a vulnerability classified as critical was discovered. The incomplete filtering in ThemeAdminService allows for remote code execution (RCE). |
|---|
| Источник | ⚠️ https://github.com/jmx0hxq/Vulnerability-learning/blob/main/shopxo-rce.md |
|---|
| Пользователь | jmx0hxq (UID 63891) |
|---|
| Представление | 14.02.2025 14:57 (1 Год назад) |
|---|
| Модерация | 23.02.2025 08:00 (9 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 296601 [ShopXO до 6.4.0 Template ThemeAdminService.php эскалация привилегий] |
|---|
| Баллы | 16 |
|---|