CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-0099

PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.058

EPSS Ranking 90.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://downloads.securityfocus.com/vulnerabilities/exploits/cijfer-vscxpl.pl
http://www.securityfocus.com/bid/16126
https://www.exploit-db.com/exploits/1401
http://downloads.securityfocus.com/vulnerabilities/exploits/cijfer-vscxpl.pl
http://www.securityfocus.com/bid/16126
https://www.exploit-db.com/exploits/1401

Products affected by CVE-2006-0099

Valdersoft » Valdersoft Shopping Cart » Version: 3.0

cpe:2.3:a:valdersoft:valdersoft_shopping_cart:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0099

Products

Pricing

Contact Us