Description

CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.

Remediation

References

CVE-2023-47675

Related Vulnerabilities

Liferay Portal CVE-2020-15840 Vulnerability (CVE-2020-15840)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2353)

WordPress Plugin Fourteen Extended Cross-Site Scripting (1.2.31)

WordPress Plugin Royal Elementor Addons and Templates Arbitrary File Upload (1.3.78)

WordPress Plugin Jayj Quicktag Multiple Vulnerabilities (1.3.1)

Severity

High

Classification

CVE-2023-47675 CWE-138 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities