PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Valdersoft_shopping_cart | Valdersoft | 3.0 (including) | 3.0 (including) |