PHP remote file inclusion vulnerability in cart_content.php in Squirrelcart 2.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cart_isp_root parameter.
CPE | Name | Operator | Version |
---|---|---|---|
squirrelcart | eq | 2.2.2 | |
squirrelcart | eq | 1.6 | |
squirrelcart | eq | 1.5.5 |