|
PixySoft E-Cart Art Parameter Remote Command Execution Vulnerability
An exploit is not required. The following proof of concept is available: http://www.example.com/DIRTOECART/index.cgi?action=viewart&cat=reproductores_dvd&art=reproductordvp-ns315.dat|uname%20-a| SoulBlack has provided the following exploit: http://www.soulblack.com.ar/repo/tools/ecart-xpl.php The following script has been provided that supplies a connect back shell: |
|
 Privacy Statement |
