Qualiteam : Security Vulnerabilities, CVEs, Published In 2006 (File inclusion) CVSS score >= 1
Dynamic variable evaluation vulnerability in cmpi.php in Qualiteam X-Cart 4.1.3 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code, as demonstrated by PHP remote file inclusion via the xcart_dir parameter.
Max CVSS
7.5
EPSS Score
6.57%
Published
2006-09-21
Updated
2017-07-20
1 vulnerabilities found