Lucene search
GoogleOSV:GHSA-XX77-W6P5-XVMJHistoryMay 24, 2022 - 5:44 p.m.
ShopXO RCE Vulnerability
2022-05-2417:44:35
Google
osv.dev
13
0.005 Low
EPSS
Percentile
76.2%
A remote command execution vulnerability in shopxo 1.9.3 allows an attacker to upload malicious code generated by phar where the suffix is JPG, which is uploaded after modifying the phar suffix.
Related
prion
prion
Design/Logic Flaw
2021-03-15 17:15:00
cve
cve
CVE-2021-27817
2021-03-15 17:15:22
osv
osv
CVE-2021-27817
2021-03-15 17:15:22
cvelist
cvelist
CVE-2021-27817
2021-03-15 16:41:45
nvd
nvd
CVE-2021-27817
2021-03-15 17:15:22
github
github
ShopXO RCE Vulnerability
2022-05-24 17:44:35