3 matches found
CVE-2001-0985
shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter...
CVE-2001-0985
Affected product: Hassan Consulting Shopping Cart 1.23. Vulnerability: arbitrary command execution via shell metacharacters in the URL parameter “page” leading to remote code execution. Root cause is unsafely handling the page parameter in shop.pl, allowing user-supplied input to be interpreted b...
CVE-2001-0985
shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter...