Back to search
CVE-2015-2184
Published: Mar 10, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
ZeusCart 4 allows remote attackers to obtain configuration information via a getphpinfo action to admin/, which calls the phpinfo function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://sroesemann.blogspot.de/2015/01/sroeadv-2015-12.html
x_refsource_MISC
72761
vdb-entry
x_refsource_BID
36159
exploit
x_refsource_EXPLOIT-DB
20150223 ECommerce-Shopping Cart Zeuscart v. 4: Multiple reflecting XSS-, SQLi and InformationDisclosure-vulnerabilities
mailing-list
x_refsource_FULLDISC
https://github.com/ZeusCart/zeuscart/issues/28
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now