August 21, 2020

X-Cart 5 <= 5.4.0.12/5.4.1.7 Unauthenticated RCE via File Write

This one was a fun little hack. Versions 5.4.1.7 and below, and 5.4.0.12 and below of the X-Cart PHP ecommerce platform are affected by an unauthenticated vulnerability that allows an…

NickstaDB

Infosec, making, breaking, hacking.

Posts filed under X-Cart

August 21, 2020

X-Cart 5 <= 5.4.0.12/5.4.1.7 Unauthenticated RCE via File Write