CVE-2018-18573

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-18573

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-18573.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-18573

Published

2019-08-22T15:15:12Z

Modified

2025-01-08T05:05:05.123063Z

Severity

7.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. Remote authenticated administrators can upload new '.htaccess' files (e.g., omitting .php) and subsequently achieve arbitrary PHP code execution via a /catalog/admin/categories.php?cPath=&action=new_product URI.

References

https://github.com/osCommerce/oscommerce2/issues/631

Affected packages

Git / github.com/oscommerce/oscommerce2

Affected ranges

Type: GIT
Repo: https://github.com/oscommerce/oscommerce2
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

94e9e9efe7994bf88d8ade2e64881b4bfe1745d4

Affected versions

v2.*

v2.2ms2-060817

v2.2rc1

v2.2rc2

v2.2rc2a

v2.3

v2.3.1

v2.3.3

v2.3.4

v2.3.4.1