August 21, 2020
X-Cart 5 <= 5.4.0.12/5.4.1.7 Unauthenticated RCE via File Write
This one was a fun little hack. Versions 5.4.1.7 and below, and 5.4.0.12 and below of the X-Cart PHP ecommerce platform are affected by an unauthenticated vulnerability that allows an…