NuytsTech Security

CVE-2006-5727

by ·

PHP remote file inclusion vulnerability in admin/controls/cart.php in sazcart 1.5 allows remote attackers to execute arbitrary PHP code via the (1) _saz[settings][shippingfolder] and (2) _saz[settings][taxfolder] parameters.

Date published : 2006-11-06

http://www.securityfocus.com/bid/20922

http://www.securityfocus.com/archive/1/456542/100/0/threaded

Tags: