← back
CVE-2024-53412

CVE-2024-53412

CVSS 8.4 HIGHEPSS 0.6%CWE-77
Command injection in the connect function in NietThijmen ShoppingCart 0.0.2 allows an attacker to execute arbitrary shell commands and achieve remote code execution via injection of malicious payloads into the Port field
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/Buckdray/vulnerability-research/blob/main/CVE-2024-53412/README.mdhttps://github.com/NietThijmen/ShoppingCart/issues/1