Shopping Cart plugin is prone to an unrestricted file upload vulnerability. Because of incorrect if statement inside βbanneruploaderscript.phpβ, any registered user can upload any file.
Upgrade the plugin.
CPE | Name | Operator | Version |
---|---|---|---|
shopping cart | le | 3.0.4 |