MobileCartly 1.0 <= Remote Code Execution

2012.08.09
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

################################################# MobileCartly 1.0 <= Remote Code Execution ################################################# Discovered by: Jean Pascal Pereira <pereira@secbiz.de> Vendor information: "MobileCartly is an Open Source Mobile Shopping Cart Software." Vendor URI: http://www.mobilecartly.com ################################################# Risk-level: High The application is prone to a remote code execution vulnerability. ------------------------------------- shoppingcart/add.php, line 9: if( isset( $_COOKIE['MCCHECKOUT'] ) ) { $checkout = unserialize($_COOKIE['MCCHECKOUT']); $checkout[] = $product; setcookie('MCCHECKOUT', serialize($checkout), time()+10800); ------------------------------------- Solution: Perform some input validation to get control over the serialized data. As end-user you should at least keep your PHP version up to date. ------------------------------------- #################################################

References:

http://www.mobilecartly.com


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2021, cxsecurity.com

 

Back to Top