Design/Logic Flaw

2022-03-2022:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

32.4%

JSON

An arbitrary file upload vulnerability in the upload payment plugin of ShopXO v1.9.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.

CPENameOperatorVersion
shopxoeq1.9.0

CPE	Name	Operator	Version
	shopxo	eq	1.9.0

References

github.com/gongfuxiang/shopxo/issues/48

0.001 Low

EPSS

Percentile

32.4%

JSON

Related for PRION:CVE-2020-26007