Lucene search

CVE-2023-1185

🗓️ 06 Mar 2023 08:08:15Reported by VulDBType

Vulnerability in ECshop up to 4.1.8 allows unrestricted remote upload (CVE-2023-1185

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2023-1185 ECshop New Product unrestricted upload	6 Mar 202307:06	–	cvelist
NVD	CVE-2023-1185	6 Mar 202308:15	–	nvd
Prion	Design/Logic Flaw	6 Mar 202308:15	–	prion

Nvd

Vulners

Node

shopex ecshopRange≤4.1.8

[
  {
    "vendor": "n/a",
    "product": "ECshop",
    "versions": [
      {
        "version": "4.1.0",
        "status": "affected"
      },
      {
        "version": "4.1.1",
        "status": "affected"
      },
      {
        "version": "4.1.2",
        "status": "affected"
      },
      {
        "version": "4.1.3",
        "status": "affected"
      },
      {
        "version": "4.1.4",
        "status": "affected"
      },
      {
        "version": "4.1.5",
        "status": "affected"
      },
      {
        "version": "4.1.6",
        "status": "affected"
      },
      {
        "version": "4.1.7",
        "status": "affected"
      },
      {
        "version": "4.1.8",
        "status": "affected"
      }
    ],
    "modules": [
      "New Product Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/wjzdalao/ecshop4.1.8/issues/2
vuldb	www.vuldb.com/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2023 08:15Current

6.6Medium risk

Vulners AI Score6.6

CVSS25.8

CVSS34.7 - 8.8

EPSS0.00238

CWE-434