← back
CVE-2002-1798

CVE-2002-1798

EPSS 4.6%
MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/21896unverifiedexploitdbwww.exploit-db.com/exploits/21894unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-10/0016.htmlhttp://www.iss.net/security_center/static/10306.phphttp://www.securityfocus.com/bid/5851http://www.securityfocus.com/bid/5855