CVE-2001-0985

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 08/09/2001 Updated: 19/12/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote malicious users to execute arbitrary commands via shell metacharacters in the "page" parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hassan consulting shopping cart 1.23

source: wwwsecurityfocuscom/bid/3308/info Hassan Consulting's Shopping Cart is commercial web store software Shopping Cart does not filter certain types of user-supplied input from web requests This makes it possible for a malicious user to submit a request which causes arbitrary commands to be executed on the host (with the privileges ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/212827 http://www.irata.com/shopver.html http://www.securityfocus.com/bid/3308 https://exchange.xforce.ibmcloud.com/vulnerabilities/7106 https://nvd.nist.gov https://www.exploit-db.com/exploits/21104/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0985

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect