CVE-2009-20006
osCommerce <= 2.2 Admin File Manager Arbitrary PHP Code Execution
osCommerce versions up to and including 2.2 RC2a contain a vulnerability in its administrative file manager utility (admin/file_manager.php). The interface allows file uploads and edits without sufficient input validation or access control. An unauthenticated attacker can craft a POST request to upload a .php file containing arbitrary code, which is then executed by the server.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
osCommerce · osCommercepublic PoCs found — 3
cve_referenceraw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/oscommerce_filemanager.rbunverifiedcve_referencewww.exploit-db.com/exploits/16899unverifiedcve_referencewww.exploit-db.com/exploits/9556unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/oscommerce_filemanager.rbhttps://www.exploit-db.com/exploits/16899https://www.exploit-db.com/exploits/9556https://www.oscommerce.com/https://www.vulncheck.com/advisories/oscommerce-arbitrary-php-code-execution