AI Score
Confidence
High
EPSS
Percentile
41.3%
The files function in the administration section in CS-Cart 4.6.2 and earlier allows attackers to execute arbitrary PHP code via vectors involving a custom page.
packetstormsecurity.com/files/145096/CSC-Cart-4.6.2-Shell-Upload.html